[Git][security-tracker-team/security-tracker][master] Add references for sail upstream issues

Salvatore Bonaccorso (@carnil) Wed, 03 Sep 2025 07:21:46 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
451f1308 by Salvatore Bonaccorso at 2025-09-03T16:21:08+02:00
Add references for sail upstream issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2241,6 +2241,7 @@ CVE-2025-53510 (A memory corruption vulnerability exists 
in the PSD Image Decodi
        - sail 0.9.9-1 (bug #1112346)
        [trixie] - sail <no-dsa> (Minor issue)
        NOTE: 
https://talosintelligence.com/vulnerability_reports/TALOS-2025-2218
+       NOTE: https://github.com/HappySeaFox/sail/issues/226
        NOTE: Tests: 
https://github.com/HappySeaFox/sail/commit/463a80236406a52f59e34f9a4ff0327a3995862b
 CVE-2025-53120 (A path traversal vulnerability in unauthenticated upload 
functionality ...)
        NOT-FOR-US: Securden Unified PAM
@@ -2252,15 +2253,18 @@ CVE-2025-53085 (A memory corruption vulnerability 
exists in the PSD RLE Decoding
        - sail 0.9.9-1 (bug #1112346)
        [trixie] - sail <no-dsa> (Minor issue)
        NOTE: 
https://talosintelligence.com/vulnerability_reports/TALOS-2025-2219
+       NOTE: https://github.com/HappySeaFox/sail/issues/227
        NOTE: Tests: 
https://github.com/HappySeaFox/sail/commit/463a80236406a52f59e34f9a4ff0327a3995862b
 CVE-2025-52930 (A memory corruption vulnerability exists in the BMPv3 RLE 
Decoding fun ...)
        - sail 0.9.9-1 (bug #1112346)
        [trixie] - sail <no-dsa> (Minor issue)
        NOTE: 
https://talosintelligence.com/vulnerability_reports/TALOS-2025-2221
+       NOTE: https://github.com/HappySeaFox/sail/issues/229
 CVE-2025-52456 (A memory corruption vulnerability exists in the WebP Image 
Decoding fu ...)
        - sail 0.9.9-1 (bug #1112346)
        [trixie] - sail <no-dsa> (Minor issue)
        NOTE: 
https://talosintelligence.com/vulnerability_reports/TALOS-2025-2224
+       NOTE: https://github.com/HappySeaFox/sail/issues/230
        NOTE: Tests: 
https://github.com/HappySeaFox/sail/commit/463a80236406a52f59e34f9a4ff0327a3995862b
 CVE-2025-52130 (File upload vulnerability in WebErpMesv2 1.17 in the 
app/Http/Controll ...)
        NOT-FOR-US: WebErpMesv2
@@ -2276,6 +2280,7 @@ CVE-2025-50129 (A memory corruption vulnerability exists 
in the PCX Image Decodi
        - sail 0.9.9-1 (bug #1112346)
        [trixie] - sail <no-dsa> (Minor issue)
        NOTE: 
https://talosintelligence.com/vulnerability_reports/TALOS-2025-2220
+       NOTE: https://github.com/HappySeaFox/sail/issues/228
        NOTE: Tests: 
https://github.com/HappySeaFox/sail/commit/463a80236406a52f59e34f9a4ff0327a3995862b
 CVE-2025-48303 (Cross-Site Request Forgery (CSRF) vulnerability in Kevin 
Langley Jr. P ...)
        NOT-FOR-US: WordPress plugin or theme
@@ -2283,6 +2288,7 @@ CVE-2025-46407 (A memory corruption vulnerability exists 
in the BMPv3 Palette De
        - sail 0.9.9-1 (bug #1112346)
        [trixie] - sail <no-dsa> (Minor issue)
        NOTE: 
https://talosintelligence.com/vulnerability_reports/TALOS-2025-2215
+       NOTE: https://github.com/HappySeaFox/sail/issues/223
        NOTE: Tests: 
https://github.com/HappySeaFox/sail/commit/463a80236406a52f59e34f9a4ff0327a3995862b
 CVE-2025-45968 (An issue in System PDV v1.0 allows a remote attacker to obtain 
sensiti ...)
        NOT-FOR-US: System PDV
@@ -2302,11 +2308,13 @@ CVE-2025-35984 (A memory corruption vulnerability 
exists in the PCX Image Decodi
        - sail 0.9.9-1 (bug #1112346)
        [trixie] - sail <no-dsa> (Minor issue)
        NOTE: 
https://talosintelligence.com/vulnerability_reports/TALOS-2025-2217
+       NOTE: https://github.com/HappySeaFox/sail/issues/225
        NOTE: Tests: 
https://github.com/HappySeaFox/sail/commit/463a80236406a52f59e34f9a4ff0327a3995862b
 CVE-2025-32468 (A memory corruption vulnerability exists in the BMPv3 Image 
Decoding f ...)
        - sail 0.9.9-1 (bug #1112346)
        [trixie] - sail <no-dsa> (Minor issue)
        NOTE: 
https://talosintelligence.com/vulnerability_reports/TALOS-2025-2216
+       NOTE: https://github.com/HappySeaFox/sail/issues/224
        NOTE: Tests: 
https://github.com/HappySeaFox/sail/commit/463a80236406a52f59e34f9a4ff0327a3995862b
 CVE-2025-29525 (DASAN GPON ONU H660WM OS version H660WMR210825 Hardware 
version DS-E5- ...)
        NOT-FOR-US: DASAN GPON ONU H660WM



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/451f1308579fc3fcd1aaa5a2d5938aa6c68b1c36

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/451f1308579fc3fcd1aaa5a2d5938aa6c68b1c36
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Add references for sail upstream issues

Reply via email to