[Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2025-25467 as postponed for Bullseye

Mon, 24 Feb 2025 14:21:24 -0800 


Thorsten Alteholz pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
3aa1fff6 by Thorsten Alteholz at 2025-02-24T23:11:43+01:00
mark CVE-2025-25467 as postponed for Bullseye

- - - - -
26d458a6 by Thorsten Alteholz at 2025-02-24T23:20:27+01:00
mark CVE-2025-26618 as postponed for Bullseye

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -542,6 +542,7 @@ CVE-2025-27091 (OpenH264 is a free license codec library 
which supports H.264 en
        NOTE: Fixed by: 
https://github.com/cisco/openh264/commit/63db555e30986e3a5f07871368dc90ae78c27449
 (v2.6.0)
 CVE-2025-26618 (Erlang is a programming language and runtime system for 
building massi ...)
        - erlang 1:27.2.4+dfsg-1
+       [bullseye] - erlang <postponed> (Minor issue)
        NOTE: 
https://github.com/erlang/otp/security/advisories/GHSA-78cv-45vx-q6fr
        NOTE: 
https://github.com/erlang/otp/commit/0ed2573cbd55c92e9125c9dc70fa1ca7fed82872 
(OTP-25.3.2.18, OTP-26.2.5.9, OTP-27.2.4)
 CVE-2025-26311 (Multiple memory leaks have been identified in the clip actions 
parsing ...)
@@ -981,6 +982,7 @@ CVE-2025-25468 (FFmpeg git-master before commit d5873b was 
discovered to contain
        NOTE: Fixed by: 
https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/d5873be583ada9e1fb887e2fe8dcfd4b12e0efcd
 CVE-2025-25467 (Insufficient tracking and releasing of allocated used memory 
in libx26 ...)
        - x264 <unfixed>
+       [bullseye] - x264 <postponed> (Reevaluate once issue fixed upstream)
        NOTE: https://code.videolan.org/videolan/x264/-/issues/75
 CVE-2025-25054 (Movable Type contains a reflected cross-site scripting 
vulnerability i ...)
        - movabletype-opensource <removed>



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/1769600b582edacadf52c075e63ce20a1441421b...26d458a6d8b8f3b429899b1305ec84a5f92c1f36

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/1769600b582edacadf52c075e63ce20a1441421b...26d458a6d8b8f3b429899b1305ec84a5f92c1f36
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to