Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a36b6124 by Salvatore Bonaccorso at 2025-09-29T17:59:14+02:00
Track fixed version for radare2 updates via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -37618,12 +37618,12 @@ CVE-2025-5649 (A vulnerability classified as critical
has been found in SourceCo
NOT-FOR-US: SourceCodester
CVE-2025-5648 (A vulnerability was found in Radare2 5.9.9. It has been
classified as ...)
[experimental] - radare2 6.0.2+dfsg-1
- - radare2 <unfixed> (bug #1107316)
+ - radare2 6.0.4+dfsg-1 (bug #1107316)
NOTE: https://github.com/radareorg/radare2/issues/24238
NOTE:
https://github.com/radareorg/radare2/commit/5705d99cc1f23f36f9a84aab26d1724010b97798
(6.0.0)
CVE-2025-5647 (A vulnerability was found in Radare2 5.9.9 and classified as
problemat ...)
[experimental] - radare2 6.0.2+dfsg-1
- - radare2 <unfixed> (bug #1107316)
+ - radare2 6.0.4+dfsg-1 (bug #1107316)
NOTE: https://github.com/radareorg/radare2/issues/24237
NOTE:
https://github.com/radareorg/radare2/commit/5705d99cc1f23f36f9a84aab26d1724010b97798
(6.0.0)
CVE-2025-5382 (Improper access control in users MFA feature in Devolutions
Server 202 ...)
@@ -37701,32 +37701,32 @@ CVE-2025-5683 (When loading a specifically crafted
ICNS format image file in QIm
NOTE:
https://github.com/qt/qtimageformats/commit/efd332516f510144927121fa749ce819b82ec633
CVE-2025-5646 (A vulnerability has been found in Radare2 5.9.9 and classified
as prob ...)
[experimental] - radare2 6.0.2+dfsg-1
- - radare2 <unfixed> (bug #1107316)
+ - radare2 6.0.4+dfsg-1 (bug #1107316)
NOTE: https://github.com/radareorg/radare2/issues/24235
NOTE:
https://github.com/radareorg/radare2/commit/5705d99cc1f23f36f9a84aab26d1724010b97798
(6.0.0)
CVE-2025-5645 (A vulnerability, which was classified as problematic, was found
in Rad ...)
[experimental] - radare2 6.0.2+dfsg-1
- - radare2 <unfixed> (bug #1107316)
+ - radare2 6.0.4+dfsg-1 (bug #1107316)
NOTE: https://github.com/radareorg/radare2/issues/24234
NOTE:
https://github.com/radareorg/radare2/commit/5705d99cc1f23f36f9a84aab26d1724010b97798
(6.0.0)
CVE-2025-5644 (A vulnerability, which was classified as problematic, has been
found i ...)
[experimental] - radare2 6.0.2+dfsg-1
- - radare2 <unfixed> (bug #1107316)
+ - radare2 6.0.4+dfsg-1 (bug #1107316)
NOTE: https://github.com/radareorg/radare2/issues/24233
NOTE:
https://github.com/radareorg/radare2/commit/5705d99cc1f23f36f9a84aab26d1724010b97798
(6.0.0)
CVE-2025-5643 (A vulnerability classified as problematic was found in Radare2
5.9.9. ...)
[experimental] - radare2 6.0.2+dfsg-1
- - radare2 <unfixed> (bug #1107316)
+ - radare2 6.0.4+dfsg-1 (bug #1107316)
NOTE: https://github.com/radareorg/radare2/issues/24232
NOTE:
https://github.com/radareorg/radare2/commit/5705d99cc1f23f36f9a84aab26d1724010b97798
(6.0.0)
CVE-2025-5642 (A vulnerability classified as problematic has been found in
Radare2 5. ...)
[experimental] - radare2 6.0.2+dfsg-1
- - radare2 <unfixed> (bug #1107316)
+ - radare2 6.0.4+dfsg-1 (bug #1107316)
NOTE: https://github.com/radareorg/radare2/issues/24231
NOTE:
https://github.com/radareorg/radare2/commit/5705d99cc1f23f36f9a84aab26d1724010b97798
(6.0.0)
CVE-2025-5641 (A vulnerability was found in Radare2 5.9.9. It has been rated
as probl ...)
[experimental] - radare2 6.0.2+dfsg-1
- - radare2 <unfixed> (bug #1107316)
+ - radare2 6.0.4+dfsg-1 (bug #1107316)
NOTE: https://github.com/radareorg/radare2/issues/24230
NOTE:
https://github.com/radareorg/radare2/commit/5705d99cc1f23f36f9a84aab26d1724010b97798
(6.0.0)
CVE-2025-5640 (A vulnerability was found in PX4-Autopilot 1.12.3. It has been
classif ...)
@@ -68111,7 +68111,7 @@ CVE-2025-1866 (Improper Restriction of Operations
within the Bounds of a Memory
NOTE:
https://github.com/warmcat/libwebsockets/commit/3f7c79fd57338aca1bf4a1b1f24e324b80d36265
CVE-2025-1864 (Improper Restriction of Operations within the Bounds of a
Memory Buffe ...)
[experimental] - radare2 6.0.2+dfsg-1
- - radare2 <unfixed> (bug #1099622)
+ - radare2 6.0.4+dfsg-1 (bug #1099622)
NOTE: https://github.com/radareorg/radare2/pull/23981
NOTE: Fixed by:
https://github.com/radareorg/radare2/commit/db6decd4bc90bb4a492129e70803136fa184f470
(6.0.0)
CVE-2025-1859 (A vulnerability, which was classified as critical, has been
found in P ...)
@@ -68697,7 +68697,7 @@ CVE-2025-1757 (The WordPress Portfolio Builder \u2013
Portfolio Gallery plugin f
NOT-FOR-US: WordPress plugin
CVE-2025-1744 (Out-of-bounds Write vulnerability in radareorg radare2 allows
heap-b ...)
[experimental] - radare2 6.0.2+dfsg-1
- - radare2 <unfixed> (bug #1099620)
+ - radare2 6.0.4+dfsg-1 (bug #1099620)
NOTE: https://github.com/radareorg/radare2/pull/23969
NOTE:
https://github.com/radareorg/radare2/commit/e64c606b1342a4c0ab2c35ef5146b69667dcd43a
(6.0.0)
CVE-2025-1687 (The Cardealer theme for WordPress is vulnerable to Cross-Site
Request ...)
@@ -74806,7 +74806,7 @@ CVE-2025-1379 (A vulnerability has been found in
code-projects Real Estate Prope
NOT-FOR-US: Real Estate Property Management System
CVE-2025-1378 (A vulnerability, which was classified as problematic, was found
in rad ...)
[experimental] - radare2 6.0.2+dfsg-1
- - radare2 <unfixed> (bug #1098376)
+ - radare2 6.0.4+dfsg-1 (bug #1098376)
NOTE: https://github.com/radareorg/radare2/issues/23953
NOTE: Fixed by:
https://github.com/radareorg/radare2/commit/c6c772d2eab692ce7ada5a4227afd50c355ad545
(6.0.0)
CVE-2025-1377 (A vulnerability, which was classified as problematic, has been
found i ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a36b6124d1f1363e7303fa4d57ed269de12aed22
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a36b6124d1f1363e7303fa4d57ed269de12aed22
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
