[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Sep 15 09:12:15 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2b1bced7 by security tracker role at 2025-09-15T08:12:06+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,63 @@
+CVE-2025-59378 (In guix-daemon in GNU Guix before 1618ca7, a content-addressed-mirrors ...)
+	TODO: check
+CVE-2025-59375 (libexpat in Expat before 2.7.2 allows attackers to trigger large dynam ...)
+	TODO: check
+CVE-2025-59364 (The express-xss-sanitizer (aka Express XSS Sanitizer) package through  ...)
+	TODO: check
+CVE-2025-41713 (During a short time frame while the device is booting an unauthenticat ...)
+	TODO: check
+CVE-2025-10453 (O'View MapServer developed by PilotGaea Technologies has a Server-Side ...)
+	TODO: check
+CVE-2025-10452 (Statistical Database System developed by Gotac has a Missing Authentic ...)
+	TODO: check
+CVE-2025-10433 (A vulnerability was determined in 1Panel-dev MaxKB up to 2.0.2/2.1.0.  ...)
+	TODO: check
+CVE-2025-10432 (A vulnerability was found in Tenda AC1206 15.03.06.23. This vulnerabil ...)
+	TODO: check
+CVE-2025-10431 (A vulnerability has been found in SourceCodester Pet Grooming Manageme ...)
+	TODO: check
+CVE-2025-10430 (A flaw has been found in SourceCodester Pet Grooming Management Softwa ...)
+	TODO: check
+CVE-2025-10429 (A vulnerability was detected in SourceCodester Pet Grooming Management ...)
+	TODO: check
+CVE-2025-10428 (A security vulnerability has been detected in SourceCodester Pet Groom ...)
+	TODO: check
+CVE-2025-10427 (A weakness has been identified in SourceCodester Pet Grooming Manageme ...)
+	TODO: check
+CVE-2025-10426 (A security flaw has been discovered in itsourcecode Online Laundry Man ...)
+	TODO: check
+CVE-2025-10425 (A vulnerability was identified in 1000projects Online Student Project  ...)
+	TODO: check
+CVE-2025-10424 (A vulnerability was determined in 1000projects Online Student Project  ...)
+	TODO: check
+CVE-2025-10423 (A vulnerability was found in newbee-mall 1.0. Impacted is the function ...)
+	TODO: check
+CVE-2025-10422 (A vulnerability has been found in newbee-mall up to 613a662adf1da7623e ...)
+	TODO: check
+CVE-2025-10421 (A flaw has been found in SourceCodester Student Grading System 1.0. Th ...)
+	TODO: check
+CVE-2025-10420 (A vulnerability was detected in SourceCodester Student Grading System  ...)
+	TODO: check
+CVE-2025-10419 (A security vulnerability has been detected in SourceCodester Student G ...)
+	TODO: check
+CVE-2025-10418 (A weakness has been identified in SourceCodester Student Grading Syste ...)
+	TODO: check
+CVE-2025-10417 (A security flaw has been discovered in Campcodes Grocery Sales and Inv ...)
+	TODO: check
+CVE-2025-10416 (A vulnerability was identified in Campcodes Grocery Sales and Inventor ...)
+	TODO: check
+CVE-2025-10415 (A vulnerability was determined in Campcodes Grocery Sales and Inventor ...)
+	TODO: check
+CVE-2025-10414 (A vulnerability was found in Campcodes Grocery Sales and Inventory Sys ...)
+	TODO: check
+CVE-2025-10413 (A vulnerability has been found in Campcodes Grocery Sales and Inventor ...)
+	TODO: check
+CVE-2025-10411 (A vulnerability was detected in itsourcecode E-Logbook with Health Mon ...)
+	TODO: check
+CVE-2025-10410 (A security vulnerability has been detected in SourceCodester Link Stat ...)
+	TODO: check
+CVE-2025-10409 (A weakness has been identified in SourceCodester Student Grading Syste ...)
+	TODO: check
 CVE-2025-6051 (A Regular Expression Denial of Service (ReDoS) vulnerability was disco ...)
 	NOT-FOR-US: huggingface/transformers
 CVE-2025-36035 (IBM PowerVM Hypervisor FW950.00 through FW950.E0, FW1050.00 through FW ...)
@@ -2028,7 +2088,7 @@ CVE-2023-31322 (Type confusion in the ASP could allow an attacker to pass a malf
 CVE-2023-31306 (Improper validation of an array index in the AMD graphics driver softw ...)
 	NOT-FOR-US: AMD
 CVE-2025-9943 (An SQL injection vulnerability has been identified in the "ID" attribu ...)
-	{DSA-5994-1}
+	{DSA-5994-1 DLA-4300-1}
 	- shibboleth-sp 3.5.1+dfsg-1 (bug #1114506)
 	NOTE: https://issues.shibboleth.net/jira/browse/SSPCPP-1014
 	NOTE: https://shibboleth.net/community/advisories/secadv_20250903.txt



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2b1bced73b650e0a372b6ecb1760028d367de02b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2b1bced73b650e0a372b6ecb1760028d367de02b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250915/b3e569ad/attachment.htm>

More information about the debian-security-tracker-commits mailing list