[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) Sat, 22 Feb 2025 01:28:46 -0800


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
ac0da28b by security tracker role at 2025-02-22T08:11:56+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,39 @@
+CVE-2025-27109 (solid-js is a declarative, efficient, and flexible JavaScript 
library  ...)
+       TODO: check
+CVE-2025-27108 (dom-expressions is a Fine-Grained Runtime for Performant DOM 
Rendering ...)
+       TODO: check
+CVE-2025-27106 (binance-trading-bot is an automated Binance trading bot with 
trailing  ...)
+       TODO: check
+CVE-2025-27105 (vyper is a Pythonic Smart Contract Language for the EVM. Vyper 
handles ...)
+       TODO: check
+CVE-2025-27104 (vyper is a Pythonic Smart Contract Language for the EVM. 
Multiple eval ...)
+       TODO: check
+CVE-2025-26622 (vyper is a Pythonic Smart Contract Language for the EVM. Vyper 
`sqrt() ...)
+       TODO: check
+CVE-2025-25282 (RAGFlow is an open-source RAG (Retrieval-Augmented Generation) 
engine  ...)
+       TODO: check
+CVE-2025-1555 (A vulnerability classified as critical was found in hzmanyun 
Education ...)
+       TODO: check
+CVE-2025-1510 (The The Custom Post Type Date Archives plugin for WordPress is 
vulnera ...)
+       TODO: check
+CVE-2025-1509 (The The Show Me The Cookies plugin for WordPress is vulnerable 
to arbi ...)
+       TODO: check
+CVE-2024-45674 (IBM Security Verify Bridge Directory Sync 1.0.1 through 
1.0.12, IBM Se ...)
+       TODO: check
+CVE-2024-22341 (IBM Watson Query on Cloud Pak for Data 4.0.0 through 4.0.9, 
4.5.0 thro ...)
+       TODO: check
+CVE-2024-13899 (The Mambo Importer plugin for WordPress is vulnerable to PHP 
Object In ...)
+       TODO: check
+CVE-2024-13873 (The WP Job Portal \u2013 A Complete Recruitment System for 
Company or  ...)
+       TODO: check
+CVE-2024-13798 (The Post Grid and Gutenberg Blocks \u2013 ComboBlocks plugin 
for WordP ...)
+       TODO: check
+CVE-2024-13474 (The LTL Freight Quotes \u2013 Purolator Edition plugin for 
WordPress i ...)
+       TODO: check
+CVE-2024-12467 (The Pago por Redsys plugin for WordPress is vulnerable to 
Reflected Cr ...)
+       TODO: check
+CVE-2024-12038 (The Post Form \u2013 Registration Form \u2013 Profile Form for 
User Pr ...)
+       TODO: check
 CVE-2025-26014 (A Remote Code Execution (RCE) vulnerability in Loggrove v.1.0 
allows a ...)
        NOT-FOR-US: Loggrove
 CVE-2025-26013 (An issue in Loggrove v.1.0 allows a remote attacker to obtain 
sensitiv ...)
@@ -3852,7 +3888,7 @@ CVE-2024-13492 (The Guten Free Options WordPress plugin 
through 0.9.5 does not s
 CVE-2024-13352 (The Legull WordPress plugin through 1.2.2 does not sanitise 
and escape ...)
        NOT-FOR-US: WordPress plugin
 CVE-2024-12243 (A flaw was found in GnuTLS, which relies on libtasn1 for ASN.1 
data pr ...)
-       {DSA-5867-1}
+       {DSA-5867-1 DLA-4063-1}
        [experimental] - gnutls28 3.8.9-1
        - gnutls28 3.8.9-2
        NOTE: https://www.gnutls.org/security-new.html#GNUTLS-SA-2025-02-07
@@ -133200,6 +133236,7 @@ CVE-2023-4264 (Potential buffer overflow 
vulnerabilities n the Zephyr Bluetooth
 CVE-2023-4262
        REJECTED
 CVE-2023-4261
+       REJECTED
        NOT-FOR-US: Zephyr RTOS (unrelated to src:zephyr)
 CVE-2023-4260 (Potential off-by-one buffer overflow vulnerability in the 
Zephyr fuse  ...)
        NOT-FOR-US: Zephyr RTOS (unrelated to src:zephyr)
@@ -447963,8 +448000,8 @@ CVE-2019-8902 (An issue was discovered in idreamsoft 
iCMS through 7.0.14. A CSRF
        NOT-FOR-US: idreamsoft iCMS
 CVE-2019-8901 (This issue was addressed by verifying host keys when connecting 
to a p ...)
        NOT-FOR-US: Apple
-CVE-2019-8900
-       RESERVED
+CVE-2019-8900 (A vulnerability in the SecureROM of some Apple devices can be 
exploite ...)
+       TODO: check
 CVE-2019-8899
        REJECTED
 CVE-2019-8898 (An information disclosure issue existed in the handling of the 
Storage ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ac0da28ba3a63a91380d0644e016588ca490140c

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ac0da28ba3a63a91380d0644e016588ca490140c
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] automatic update

Reply via email to