[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Oct 13 21:22:36 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5d073924 by Salvatore Bonaccorso at 2025-10-13T22:22:06+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,15 +1,15 @@
 CVE-2025-9968 (A link following vulnerability exists in the UnifyScanner component of ...)
 	NOT-FOR-US: ASUS
 CVE-2025-9902 (Authorization Bypass Through User-Controlled Key vulnerability in AKIN ...)
-	TODO: check
+	NOT-FOR-US: QRMenu
 CVE-2025-9337 (A null pointer dereference has been identified in the AsIO3.sys driver ...)
 	NOT-FOR-US: ASUS
 CVE-2025-9336 (A stack buffer overflow has been identified in the AsIO3.sys driver. T ...)
 	NOT-FOR-US: ASUS
 CVE-2025-7707 (The llama_index library version 0.12.33 sets the NLTK data directory t ...)
-	TODO: check
+	NOT-FOR-US: llama_index
 CVE-2025-6919 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
-	TODO: check
+	NOT-FOR-US: Aykome License Tracking System
 CVE-2025-62244 (Insecure direct object reference (IDOR) vulnerability in Publications  ...)
 	NOT-FOR-US: Liferay
 CVE-2025-62243 (Insecure direct object reference (IDOR) vulnerability in Publications  ...)
@@ -19,11 +19,11 @@ CVE-2025-62242 (Insecure Direct Object Reference (IDOR) vulnerability with accou
 CVE-2025-62241 (Insecure Direct Object Reference (IDOR) vulnerability with shipment ad ...)
 	NOT-FOR-US: Liferay
 CVE-2025-62170 (rAthena is an open-source cross-platform MMORPG server. A use-after-fr ...)
-	TODO: check
+	NOT-FOR-US: rAthena
 CVE-2025-61775 (Vickey is a Misskey-based microblogging platform. A vulnerability exis ...)
-	TODO: check
+	NOT-FOR-US: Vickey
 CVE-2025-58084 (Mattermost Desktop App versions <= 5.13.0 fail to validate URLs extern ...)
-	TODO: check
+	NOT-FOR-US: Mattermost Desktop App
 CVE-2025-43991 (SupportAssist for Home PCs versions 4.8.2 and prior and SupportAssist  ...)
 	NOT-FOR-US: Dell / EMC
 CVE-2025-37729 (Improper neutralization of special elements used in a template engine  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5d07392451fcc70aaec32cb85e9bae40307fa3f9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5d07392451fcc70aaec32cb85e9bae40307fa3f9
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251013/8d6595ad/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list