Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5fc1efdd by Salvatore Bonaccorso at 2025-12-17T20:48:43+01:00
Update status for CVE-2025-7519/policykit-1
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -53034,9 +53034,9 @@ CVE-2025-7588 (A vulnerability classified as critical
has been found in PHPGuruk
CVE-2025-7587 (A vulnerability was found in code-projects Online Appointment
Booking ...)
NOT-FOR-US: code-projects
CVE-2025-7519 (A flaw was found in polkit. When processing an XML policy with
32 or m ...)
- - policykit-1 <unfixed> (bug #1109334; unimportant)
+ - policykit-1 127-1 (bug #1109334; unimportant)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2379675
- NOTE: Fixed by:
https://github.com/polkit-org/polkit/commit/107d3801361b9f9084f78710178e683391f1d245
+ NOTE: Fixed by:
https://github.com/polkit-org/polkit/commit/107d3801361b9f9084f78710178e683391f1d245
(127)
NOTE: Negligible security impact
CVE-2025-53689 (Blind XXE Vulnerabilities in jackrabbit-spi-commons and
jackrabbit-cor ...)
- jackrabbit 2.20.11-1.1 (bug #1109335; unimportant)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5fc1efddfaa5bbfb465e77a8485811283cfbf0e5
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5fc1efddfaa5bbfb465e77a8485811283cfbf0e5
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
