[Git][security-tracker-team/security-tracker][master] NFUs

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a4049a92 by Moritz Muehlenhoff at 2025-09-25T10:22:16+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,17 +1,17 @@
 CVE-2025-59833 (Flag Forge is a Capture The Flag (CTF) platform. In versions from 2.1. ...)
-	TODO: check
+	NOT-FOR-US: Flag Forge
 CVE-2025-59827 (Flag Forge is a Capture The Flag (CTF) platform. In version 2.1.0, the ...)
-	TODO: check
+	NOT-FOR-US: Flag Forge
 CVE-2025-57324 (parse is a package designed to parse JavaScript SDK. A Prototype Pollu ...)
-	TODO: check
+	NOT-FOR-US: Node parse
 CVE-2025-57320 (json-schema-editor-visual is a package that provides jsonschema editor ...)
-	TODO: check
+	NOT-FOR-US: Node json-schema-editor-visual
 CVE-2025-57319 (fast-redact is a package that provides do very fast object redaction.  ...)
-	TODO: check
+	NOT-FOR-US: Node fast-redact
 CVE-2025-57318 (A Prototype Pollution vulnerability in the toCsv function of csvjson v ...)
-	TODO: check
+	NOT-FOR-US: Node csvjson
 CVE-2025-54520 (Improper Protection Against Voltage and Clock Glitches in FPGA devices ...)
-	TODO: check
+	NOT-FOR-US: AMD
 CVE-2025-21056 (Improper input validation in Retail Mode prior to version 5.59.4 allow ...)
 	NOT-FOR-US: Samsung Mobile
 CVE-2025-29847
@@ -78,15 +78,15 @@ CVE-2025-57329 (web3-core-method is a package designed to creates the methods on
 CVE-2025-57328 (toggle-array is a package designed to enables a property on the object ...)
 	NOT-FOR-US: toggle-array Node.js package
 CVE-2025-57327 (spmrc is a package that provides the rc manager for spm. A Prototype P ...)
-	TODO: check
+	NOT-FOR-US: spmrc
 CVE-2025-57326 (A Prototype Pollution vulnerability in the byGroupAndType function of  ...)
-	TODO: check
+	NOT-FOR-US: Node sassdoc-extras
 CVE-2025-57325 (rollbar is a package designed to effortlessly track and debug errors i ...)
 	NOT-FOR-US: rollbar package for Node.js
 CVE-2025-57323 (mpregular is a package that provides a small program development frame ...)
 	NOT-FOR-US: mpregular package for Node.js
 CVE-2025-57321 (A Prototype Pollution vulnerability in the util-deps.addFileDepend fun ...)
-	TODO: check
+	NOT-FOR-US: Node magix-combine-e
 CVE-2025-56819 (An issue in Datart v.1.0.0-rc.3 allows a remote attacker to execute ar ...)
 	NOT-FOR-US: Datart
 CVE-2025-56816 (Datart 1.0.0-rc.3 is vulnerable to Directory Traversal. The configurat ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a4049a9275dfdeebc88d3cfff253877938a3a00e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a4049a9275dfdeebc88d3cfff253877938a3a00e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250925/93ffc203/attachment.htm>