[Git][security-tracker-team/security-tracker][master] 2 commits: auto-nfu: Add one more product covered for the NVIDIA CNA

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Nov 19 06:40:29 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
fe959bfe by Salvatore Bonaccorso at 2025-11-19T07:38:17+01:00
auto-nfu: Add one more product covered for the NVIDIA CNA

- - - - -
ec0e4b0a by Salvatore Bonaccorso at 2025-11-19T07:38:52+01:00
Process two NFUs

- - - - -


2 changed files:

- data/CVE/list
- data/packages/nfu.yaml


Changes:

=====================================
data/CVE/list
=====================================
@@ -243,9 +243,9 @@ CVE-2025-37155 (A vulnerability in the SSH restricted shell interface of the net
 CVE-2025-34324 (GoSign Desktop versions 2.4.0 and earlier use an unsigned update manif ...)
 	NOT-FOR-US: GoSign Desktop
 CVE-2025-33184 (NVIDIA Isaac-GR00T for all platforms contains a vulnerability in a Pyt ...)
-	TODO: check
+	NOT-FOR-US: NVIDIA
 CVE-2025-33183 (NVIDIA Isaac-GR00T for all platforms contains a vulnerability in a Pyt ...)
-	TODO: check
+	NOT-FOR-US: NVIDIA
 CVE-2025-26391 (SolarWinds Observability Self-Hosted XSS Vulnerability. The SolarWinds ...)
 	NOT-FOR-US: SolarWinds
 CVE-2025-13349 (A vulnerability has been found in SourceCodester Student Grades Manage ...)


=====================================
data/packages/nfu.yaml
=====================================
@@ -435,6 +435,7 @@
       - product: NVIDIA Apex
       - product: NVIDIA App
       - product: NVIDIA Isaac-GR00T N1
+      - product: NVIDIA Isaac-GR00T N1.5
       - product: NVIDIA Merlin Transformers4Rec
       - product: NVIDIA NeMo Curator
       - product: NVIDIA NeMo Framework



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/628520edb6e6f3ee5900a76e44e2e3c58c7a48ce...ec0e4b0a1a34d0d0554de43e13ca47dc2c52faeb

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/628520edb6e6f3ee5900a76e44e2e3c58c7a48ce...ec0e4b0a1a34d0d0554de43e13ca47dc2c52faeb
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251119/abf17160/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list