[Git][security-tracker-team/security-tracker][master] Add some AMD specific NFUs
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Nov 23 20:33:37 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
aa3f6da0 by Salvatore Bonaccorso at 2025-11-23T21:32:31+01:00
Add some AMD specific NFUs
Those are listed in
https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-9019.html
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -287,8 +287,14 @@ CVE-2025-62608 (MLX is an array framework for machine learning on Apple silicon.
NOT-FOR-US: MLX
CVE-2025-54866 (Wazuh is a free and open source platform used for threat prevention, d ...)
NOT-FOR-US: Wazuh
+CVE-2025-29933
+ NOT-FOR-US: AMD
+CVE-2025-48510
+ NOT-FOR-US: AMD
+CVE-2025-48511
+ NOT-FOR-US: AMD
CVE-2025-48502 (Improper input validation within AMD uprof can allow a local attacker ...)
- TODO: check
+ NOT-FOR-US: AMD
CVE-2025-41115 (SCIM provisioning wasintroducedin Grafana Enterprise and Grafana Cloud ...)
NOT-FOR-US: Grafana Enterprise
CVE-2025-36149 (IBM Concert Software 1.0.0 through 2.0.0 could allow a remote attacker ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aa3f6da05259e24696ba1cbd70ff94b619eac737
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aa3f6da05259e24696ba1cbd70ff94b619eac737
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251123/bca1ad1e/attachment.htm>
More information about the debian-security-tracker-commits
mailing list