[Git][security-tracker-team/security-tracker][master] auto-nfu: Update Eclipse rule

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a846d30b by Moritz Mühlenhoff at 2025-10-16T12:40:12+02:00
auto-nfu: Update Eclipse rule

- - - - -


2 changed files:

- data/CVE/list
- data/packages/nfu.yaml


Changes:

=====================================
data/CVE/list
=====================================
@@ -11,13 +11,13 @@ CVE-2025-62579 (ASDA-Soft Stack-based Buffer Overflow Vulnerability)
 CVE-2025-58778 (Multiple versions of RG-EST300 provided by Ruijie Networks provide SSH ...)
 	NOT-FOR-US: Ruijie
 CVE-2025-55091 (In NetX Duo before 6.4.4, the networking support module for Eclipse Fo ...)
-	TODO: check
+	NOT-FOR-US: Eclipse
 CVE-2025-55090 (In NetX Duo before 6.4.4, the networking support module for Eclipse Fo ...)
-	TODO: check
+	NOT-FOR-US: Eclipse
 CVE-2025-55089 (In FileX before 6.4.2, the file support module for Eclipse Foundation  ...)
-	TODO: check
+	NOT-FOR-US: Eclipse
 CVE-2025-55084 (In NetX Duo version before 6.4.4, the component of Eclipse Foundation  ...)
-	TODO: check
+	NOT-FOR-US: Eclipse
 CVE-2025-43313 (A logic issue was addressed with improved restrictions. This issue is  ...)
 	NOT-FOR-US: Apple
 CVE-2025-43282 (A double free issue was addressed with improved memory management. Thi ...)
@@ -156,11 +156,11 @@ CVE-2025-55670 (On BIG-IP Next CNF, BIG-IP Next SPK, and BIG-IP Next for Kuberne
 CVE-2025-55669 (When the BIG-IP Advanced WAF and ASM security policy and a server-side ...)
 	NOT-FOR-US: F5
 CVE-2025-55083 (In NetX Duo version before 6.4.4, the component of Eclipse Foundation  ...)
-	TODO: check
+	NOT-FOR-US: Eclipse
 CVE-2025-55082 (In NetX Duo version before 6.4.4, the component of Eclipse Foundation  ...)
-	TODO: check
+	NOT-FOR-US: Eclipse
 CVE-2025-55081 (In Eclipse Foundation NextX Duo before 6.4.4, a module of ThreadX, the ...)
-	TODO: check
+	NOT-FOR-US: Eclipse
 CVE-2025-55036 (When BIG-IP SSL Orchestrator explicit forward proxy is configured on a ...)
 	NOT-FOR-US: F5
 CVE-2025-54858 (When a BIG-IP Advanced WAF or BIG-IP ASM Security Policy is configured ...)


=====================================
data/packages/nfu.yaml
=====================================
@@ -337,6 +337,8 @@
     - anyOf:
       - product: Eclipse Cyclone DDS
       - product: Eclipse Glassfish
+      - product: FileX
+      - product: NetX Duo
       - product: OpenJ9
       - product: ThreadX
 - reason: Esri



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a846d30bec9fe2bd901c744af41e55f9fcb0420c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a846d30bec9fe2bd901c744af41e55f9fcb0420c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251016/e5818831/attachment.htm>