[Git][security-tracker-team/security-tracker][master] 2 commits: lts: add patch link for CVE-2024-4227/gsoap

Sat, 23 Aug 2025 18:48:31 -0700 


Daniel Leidert pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
70317b2a by Daniel Leidert at 2025-08-24T03:12:17+02:00
lts: add patch link for CVE-2024-4227/gsoap

- - - - -
1d8eca5f by Daniel Leidert at 2025-08-24T03:44:23+02:00
lts: triage CVE-2025-54880,CVE-2025-54881/node-mermaid for Bullseye

Issues don't affect Bullseye. Issues were introduced in v11.1.0 and in v10.9.0.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1579,9 +1579,11 @@ CVE-2025-55153
        REJECTED
 CVE-2025-54881 (Mermaid is a JavaScript based diagramming and charting tool 
that uses  ...)
        - node-mermaid <removed>
+       [bullseye] - node-mermaid <not-affected> (Vulnerable code not present)
        NOTE: 
https://github.com/mermaid-js/mermaid/security/advisories/GHSA-7rqq-prvp-x9jh
 CVE-2025-54880 (Mermaid is a JavaScript based diagramming and charting tool 
that uses  ...)
        - node-mermaid <removed>
+       [bullseye] - node-mermaid <not-affected> (Vulnerable code not present)
        NOTE: 
https://github.com/mermaid-js/mermaid/security/advisories/GHSA-8gwm-58g9-j8pw
 CVE-2025-54411 (Discourse is an open-source discussion platform. Welcome 
banner user n ...)
        NOT-FOR-US: Discourse
@@ -70697,6 +70699,7 @@ CVE-2024-4227 (In Genivia gSOAP with a specific 
configuration an unauthenticated
        - gsoap 2.8.135-1
        NOTE: 
https://www.genivia.com/advisory.html#Upgrade_recommendation_when_option_-c++11_is_used_to_generate_C++11_source_code
        NOTE: 
https://www.genivia.com/changelog.html#Version_2.8.133_(03/21/2024)
+       NOTE: Fixed by: https://sourceforge.net/p/gsoap2/code/222/
 CVE-2024-48760 (An issue in GestioIP v3.5.7 allows a remote attacker to 
execute arbitr ...)
        - gestioip <itp> (bug #742110)
 CVE-2024-47605 (silverstripe-asset-admin is a silverstripe assets gallery for 
asset ma ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/a1925a75dbac25bff36e36d34f3ef56cd3b3637a...1d8eca5f4aa97547cce916c6dda2f9ab6d207ce1

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/a1925a75dbac25bff36e36d34f3ef56cd3b3637a...1d8eca5f4aa97547cce916c6dda2f9ab6d207ce1
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to