Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f4c3c871 by Salvatore Bonaccorso at 2025-08-14T23:47:41+02:00
Mark CVE-2025-50340 as unimportant
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3437,8 +3437,10 @@ CVE-2025-50420 (An issue in the pdfseparate utility of
freedesktop poppler v25.0
NOTE:
https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1849
NOTE: Fixed by:
https://gitlab.freedesktop.org/poppler/poppler/-/commit/08d7894e4dd0e313c179e30f06ad8f546619b1b3
CVE-2025-50340 (An Insecure Direct Object Reference (IDOR) vulnerability was
discovere ...)
- - sogo <unfixed> (bug #1110604)
+ - sogo <unfixed> (bug #1110604; unimportant)
NOTE:
https://github.com/millad7/SOGo_web_mail-vulnerability-CVE-2025-50340
+ NOTE: https://www.mail-archive.com/users%40sogo.nu/msg34098.html
+ NOTE: Disputed secrurity relevance from upstream
CVE-2025-46206 (An issue in Artifex mupdf 1.25.6, 1.25.5 allows a remote
attacker to c ...)
- mupdf 1.25.1+ds1-7 (bug #1110482)
[trixie] - mupdf <no-dsa> (Minor issue)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f4c3c871c7f160e1f6d5015a9ae0557105f6f95e
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f4c3c871c7f160e1f6d5015a9ae0557105f6f95e
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
