[Git][security-tracker-team/security-tracker][master] auto-nfu: Extend rule for Eclipse

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7cd4b156 by Moritz Muehlenhoff at 2025-10-22T23:04:56+02:00
auto-nfu: Extend rule for Eclipse

- - - - -


2 changed files:

- data/CVE/list
- data/packages/nfu.yaml


Changes:

=====================================
data/CVE/list
=====================================
@@ -515,9 +515,9 @@ CVE-2025-22169 (Jira Align is vulnerable to an authorization issue. A low-privil
 CVE-2025-22168 (Jira Align is vulnerable to an authorization issue. A low-privilege us ...)
 	NOT-FOR-US: Atlassian
 CVE-2025-11966 (In Eclipse Vert.x versions [4.0.0, 4.5.21] and [5.0.0, 5.0.4], when "d ...)
-	TODO: check
+	NOT-FOR-US: Eclipse
 CVE-2025-11965 (In Eclipse Vert.x versions [4.0.0, 4.5.21] and [5.0.0, 5.0.4], a Stati ...)
-	TODO: check
+	NOT-FOR-US: Eclipse
 CVE-2025-11958 (An improper input validation in the Security Dashboard ignored-tasks A ...)
 	NOT-FOR-US: Devolutions
 CVE-2025-11957 (Improper authorization in the temporary access workflow of Devolutions ...)


=====================================
data/packages/nfu.yaml
=====================================
@@ -349,6 +349,7 @@
       - product: OpenJ9
       - product: ThreadX
       - product: USBX
+      - product: Vert.x
 - reason: Esri
   allOf:
     - cna: Esri



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7cd4b15648cfc9e0528b57378b00058e31860b33

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7cd4b15648cfc9e0528b57378b00058e31860b33
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251022/1330ee27/attachment-0001.htm>