Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1ada4a5c by Salvatore Bonaccorso at 2025-08-31T13:48:51+02:00
Track exiv2 issues fixed via unstable upload
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -248,7 +248,7 @@ CVE-2025-55579 (SolidInvoice 2.3.7 and fixed in v.2.3.8 is
vulnerable to Cross S
NOT-FOR-US: SolidInvoice
CVE-2025-55304 (Exiv2 is a C++ library and a command-line utility to read,
write, dele ...)
[experimental] - exiv2 0.28.7+dfsg-1
- - exiv2 <unfixed> (bug #1112506)
+ - exiv2 0.28.7+dfsg-2 (bug #1112506)
[trixie] - exiv2 <no-dsa> (Minor issue)
[bookworm] - exiv2 <no-dsa> (Minor issue)
[bullseye] - exiv2 <postponed> (minor issue)
@@ -266,7 +266,7 @@ CVE-2025-54877 (Tuleap is an Open Source Suite created to
facilitate management
NOT-FOR-US: Tuleap
CVE-2025-54080 (Exiv2 is a C++ library and a command-line utility to read,
write, dele ...)
[experimental] - exiv2 0.28.7+dfsg-1
- - exiv2 <unfixed> (bug #1112505)
+ - exiv2 0.28.7+dfsg-2 (bug #1112505)
[trixie] - exiv2 <no-dsa> (Minor issue)
[bookworm] - exiv2 <no-dsa> (Minor issue)
[bullseye] - exiv2 <postponed> (minor issue; out of bound read on write
plugin)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1ada4a5c50aafb740ac961efa21ab91c59e73f79
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1ada4a5c50aafb740ac961efa21ab91c59e73f79
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
