Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
140d37c1 by Moritz Mühlenhoff at 2025-11-13T20:43:12+01:00
keystone DSA
- - - - -
3 changed files:
- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -2908,6 +2908,8 @@ CVE-2025-10875 (Improper Neutralization of Input Used for
LLM Prompting vulnerab
NOT-FOR-US: Salesforce
CVE-2025-XXXX [OSSA-2025-002: Unauthenticated access to EC2/S3 token endpoints
can grant Keystone authorization]
- keystone <unfixed> (bug #1120053)
+ [trixie] - keystone 2:27.0.0-3+deb13u1
+ [bookworm] - keystone 2:22.0.2-0+deb12u1
[bullseye] - keystone 2:18.1.0-1+deb11u2
NOTE: https://www.openwall.com/lists/oss-security/2025/11/04/2
NOTE: https://bugs.launchpad.net/keystone/+bug/2119646
=====================================
data/DSA/list
=====================================
@@ -1,3 +1,6 @@
+[13 Nov 2025] DSA-6056-1 keystone - security update
+ [bookworm] - keystone 2:22.0.2-0+deb12u1
+ [trixie] - keystone 2:27.0.0-3+deb13u1
[13 Nov 2025] DSA-6055-1 chromium - security update
{CVE-2025-13042}
[bookworm] - chromium 142.0.7444.162-1~deb12u1
=====================================
data/dsa-needed.txt
=====================================
@@ -31,8 +31,6 @@ git-lfs
--
jackson-core
--
-keystone (jmm)
---
lasso (carnil)
Coordination with maintainer
--
@@ -73,8 +71,6 @@ runc
--
sogo/oldstable
--
-swift (jmm)
---
sympa/oldstable
--
tomcat10/oldstable (apo)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/140d37c1d1d928e089ba68674637c77d1f528a2a
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/140d37c1d1d928e089ba68674637c77d1f528a2a
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
