[Git][security-tracker-team/security-tracker][master] auto-nfu: Update Nvidia rule

Moritz Muehlenhoff (@jmm) jmm at debian.org
Thu Oct 2 11:18:45 BST 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c93a6f43 by Moritz Muehlenhoff at 2025-10-02T12:18:20+02:00
auto-nfu: Update Nvidia rule

- - - - -


2 changed files:

- data/CVE/list
- data/packages/nfu.yaml


Changes:

=====================================
data/CVE/list
=====================================
@@ -51,9 +51,9 @@ CVE-2025-57389 (A reflected cross-site scripted (XSS) vulnerability in the /admi
 CVE-2025-54811 (OpenPLC_V3 has a vulnerability in the enipThread function that occurs  ...)
 	NOT-FOR-US: OpenPLC
 CVE-2025-23355 (NVIDIA Nsight Graphics for Windows contains a vulnerability in an ngfx ...)
-	TODO: check
+	NOT-FOR-US: NVIDIA
 CVE-2025-23297 (NVIDIA Installer for NvAPP for Windows contains a vulnerability in the ...)
-	TODO: check
+	NOT-FOR-US: NVIDIA
 CVE-2025-11221 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
 	NOT-FOR-US: GTONE ChangeFlow
 CVE-2025-11182 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)


=====================================
data/packages/nfu.yaml
=====================================
@@ -371,8 +371,10 @@
       - product: DLS component of NVIDIA License System
       - product: Megatron LM
       - product: Megatron-LM
+      - product: Nsight Graphics
       - product: NVDebug tool
       - product: NVIDIA Apex
+      - product: NVIDIA App
       - product: NVIDIA Isaac-GR00T N1
       - product: NVIDIA Merlin Transformers4Rec
       - product: NVIDIA NeMo Curator



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c93a6f43477bb17086750afd2bbc1c5abbd49642

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c93a6f43477bb17086750afd2bbc1c5abbd49642
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251002/15089ec8/attachment.htm>

More information about the debian-security-tracker-commits mailing list