Guilhem Moulin pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
182d9a73 by Guilhem Moulin at 2025-10-01T00:02:46+02:00
CVE-2025-7425/libxlst: Mention mitigation in bullseye's libxml2
Via DLA-4319-1
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -26051,7 +26051,8 @@ CVE-2025-7425 (A flaw was found in libxslt where the
attribute type, atype, flag
NOTE:
https://gitlab.gnome.org/GNOME/libxml2/-/commit/f1e1f13b766eb580a8dcc0c4e7a447346dfd862e
(master)
NOTE: Mitigation landed in sid in 2.14.5+dfsg-0.1. Additionally the
update for libxml2 as provided
NOTE: via DSA 5990-1 (for trixie: 2.12.7+dfsg+really2.9.14-2.1+deb13u1,
for bookworm
- NOTE: 2.9.14+dfsg-1.3~deb12u4) mitigate the issue in trixie and
bookworm.
+ NOTE: 2.9.14+dfsg-1.3~deb12u4) and DLA 4319-1 (2.9.10+dfsg-6.7+deb11u9)
mitigate the issue in trixie,
+ NOTE: bookworm and bullseye.
NOTE: Potential libxslt-only solution:
https://gitlab.gnome.org/GNOME/libxslt/-/issues/140#note_2513942
CVE-2025-7424 (A flaw was found in the libxslt library. The same memory field,
psvi, ...)
{DSA-5979-1 DLA-4309-1}
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/182d9a7330395e50ccfcbcb9b6c3dfbc453845ab
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/182d9a7330395e50ccfcbcb9b6c3dfbc453845ab
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
