[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Sep 18 09:23:29 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5051855b by Salvatore Bonaccorso at 2025-09-18T10:23:06+02:00
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,65 +3,65 @@ CVE-2025-9083 (The Ninja Forms  WordPress plugin before 3.11.1 unserializes user
 CVE-2025-8942 (The WP Hotel Booking WordPress plugin before 2.2.3 lacks proper server ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-8006 (Ashlar-Vellum Cobalt XE File Parsing Out-Of-Bounds Read Remote Code Ex ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Cobalt
 CVE-2025-8005 (Ashlar-Vellum Cobalt XE File Parsing Type Confusion Remote Code Execut ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Cobalt
 CVE-2025-8004 (Ashlar-Vellum Cobalt XE File Parsing Out-Of-Bounds Read Remote Code Ex ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Cobalt
 CVE-2025-8003 (Ashlar-Vellum Cobalt CO File Parsing Out-Of-Bounds Read Remote Code Ex ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Cobalt
 CVE-2025-8002 (Ashlar-Vellum Cobalt CO File Parsing Type Confusion Remote Code Execut ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Cobalt
 CVE-2025-8001 (Ashlar-Vellum Cobalt CO File Parsing Memory Corruption Remote Code Exe ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Cobalt
 CVE-2025-8000 (Ashlar-Vellum Cobalt LI File Parsing Type Confusion Remote Code Execut ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Cobalt
 CVE-2025-7999 (Ashlar-Vellum Cobalt AR File Parsing Type Confusion Remote Code Execut ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Cobalt
 CVE-2025-7998 (Ashlar-Vellum Cobalt CO File Parsing Out-Of-Bounds Write Remote Code E ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Cobalt
 CVE-2025-7997 (Ashlar-Vellum Cobalt XE File Parsing Out-Of-Bounds Read Remote Code Ex ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Cobalt
 CVE-2025-7996 (Ashlar-Vellum Cobalt AR File Parsing Out-Of-Bounds Write Remote Code E ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Cobalt
 CVE-2025-7995 (Ashlar-Vellum Cobalt CO File Parsing Type Confusion Remote Code Execut ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Cobalt
 CVE-2025-7994 (Ashlar-Vellum Cobalt AR File Parsing Out-Of-Bounds Read Remote Code Ex ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Cobalt
 CVE-2025-7993 (Ashlar-Vellum Cobalt LI File Parsing Use-After-Free Remote Code Execut ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Cobalt
 CVE-2025-7992 (Ashlar-Vellum Cobalt AR File Parsing Out-Of-Bounds Read Remote Code Ex ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Cobalt
 CVE-2025-7991 (Ashlar-Vellum Cobalt VC6 File Parsing Out-Of-Bounds Read Remote Code E ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Cobalt
 CVE-2025-7990 (Ashlar-Vellum Cobalt VC6 File Parsing Out-Of-Bounds Write Remote Code  ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Cobalt
 CVE-2025-7989 (Ashlar-Vellum Cobalt AR File Parsing Out-Of-Bounds Read Remote Code Ex ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Cobalt
 CVE-2025-7988 (Ashlar-Vellum Graphite VC6 File Parsing Out-Of-Bounds Write Remote Cod ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Graphite
 CVE-2025-7987 (Ashlar-Vellum Graphite VC6 File Parsing Out-Of-Bounds Write Remote Cod ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Graphite
 CVE-2025-7986 (Ashlar-Vellum Graphite VC6 File Parsing Out-Of-Bounds Write Remote Cod ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Graphite
 CVE-2025-7985 (Ashlar-Vellum Cobalt VC6 File Parsing Integer Overflow Remote Code Exe ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Cobalt
 CVE-2025-7984 (Ashlar-Vellum Cobalt AR File Parsing Uninitialized Variable Remote Cod ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Cobalt
 CVE-2025-7983 (Ashlar-Vellum Graphite VC6 File Parsing Heap-based Buffer Overflow Rem ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Graphite
 CVE-2025-7982 (Ashlar-Vellum Cobalt LI File Parsing Integer Overflow Remote Code Exec ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Cobalt
 CVE-2025-7981 (Ashlar-Vellum Graphite VC6 File Parsing Uninitialized Variable Remote  ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Graphite
 CVE-2025-7980 (Ashlar-Vellum Graphite VC6 File Parsing Out-Of-Bounds Write Remote Cod ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Graphite
 CVE-2025-7979 (Ashlar-Vellum Graphite VC6 File Parsing Stack-based Buffer Overflow Re ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Graphite
 CVE-2025-7978 (Ashlar-Vellum Graphite VC6 File Parsing Uninitialized Variable Remote  ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Graphite
 CVE-2025-7977 (Ashlar-Vellum Cobalt LI File Parsing Out-Of-Bounds Read Remote Code Ex ...)
-	TODO: check
+	NOT-FOR-US: Ashlar-Vellum Cobalt
 CVE-2025-5305 (The Password Reset with Code for WordPress REST API WordPress plugin b ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-59415 (Frappe Learning is a learning system that helps users structure their  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5051855b116fdf0a61b891d3a2c7bbf19ee9df53

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5051855b116fdf0a61b891d3a2c7bbf19ee9df53
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250918/bd71a52c/attachment.htm>

More information about the debian-security-tracker-commits mailing list