Thorsten Alteholz pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3dd4e643 by Thorsten Alteholz at 2026-01-24T19:31:25+01:00
Reserve DLA-4449-1 for zvbi
- - - - -
2 changed files:
- data/CVE/list
- data/DLA/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -111088,30 +111088,25 @@ CVE-2025-2190 (The mobile application
(com.transsnet.store) has a man-in-the-mid
CVE-2025-2177 (A vulnerability classified as critical was found in libzvbi up
to 0.2. ...)
- zvbi 0.2.44-1
[bookworm] - zvbi <no-dsa> (Minor issue)
- [bullseye] - zvbi <postponed> (Minor issue; can be fixed in next update)
NOTE:
https://github.com/zapping-vbi/zvbi/security/advisories/GHSA-g7cg-7gw9-v8cf
NOTE:
https://github.com/zapping-vbi/zvbi/commit/ca1672134b3e2962cd392212c73f44f8f4cb489f
(v0.2.44)
CVE-2025-2176 (A vulnerability classified as critical has been found in
libzvbi up to ...)
- zvbi 0.2.44-1
[bookworm] - zvbi <no-dsa> (Minor issue)
- [bullseye] - zvbi <postponed> (Minor issue; can be fixed in next update)
NOTE:
https://github.com/zapping-vbi/zvbi/security/advisories/GHSA-g7cg-7gw9-v8cf
NOTE:
https://github.com/zapping-vbi/zvbi/commit/ca1672134b3e2962cd392212c73f44f8f4cb489f
(v0.2.44)
CVE-2025-2175 (A vulnerability was found in libzvbi up to 0.2.43. It has been
rated a ...)
- zvbi 0.2.44-1
[bookworm] - zvbi <no-dsa> (Minor issue)
- [bullseye] - zvbi <postponed> (Minor issue; can be fixed in next update)
NOTE:
https://github.com/zapping-vbi/zvbi/security/advisories/GHSA-g7cg-7gw9-v8cf
CVE-2025-2174 (A vulnerability was found in libzvbi up to 0.2.43. It has been
declare ...)
- zvbi 0.2.44-1
[bookworm] - zvbi <no-dsa> (Minor issue)
- [bullseye] - zvbi <postponed> (Minor issue; can be fixed in next update)
NOTE:
https://github.com/zapping-vbi/zvbi/security/advisories/GHSA-g7cg-7gw9-v8cf
NOTE:
https://github.com/zapping-vbi/zvbi/commit/ca1672134b3e2962cd392212c73f44f8f4cb489f
(v0.2.44)
CVE-2025-2173 (A vulnerability was found in libzvbi up to 0.2.43. It has been
classif ...)
- zvbi 0.2.44-1
[bookworm] - zvbi <no-dsa> (Minor issue)
- [bullseye] - zvbi <postponed> (Minor issue; can be fixed in next update)
NOTE:
https://github.com/zapping-vbi/zvbi/security/advisories/GHSA-g7cg-7gw9-v8cf
NOTE:
https://github.com/zapping-vbi/zvbi/commit/8def647eea27f7fd7ad33ff79c2d6d3e39948dce
(v0.2.44)
CVE-2025-2169 (The The WPCS \u2013 WordPress Currency Switcher Professional
plugin fo ...)
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[24 Jan 2026] DLA-4449-1 zvbi - security update
+ {CVE-2025-2173 CVE-2025-2174 CVE-2025-2175 CVE-2025-2176 CVE-2025-2177}
+ [bullseye] - zvbi 0.2.35-18+deb11u1
[24 Jan 2026] DLA-4448-1 imagemagick - security update
{CVE-2026-23874 CVE-2026-23876 CVE-2026-23952}
[bullseye] - imagemagick 8:6.9.11.60+dfsg-1.3+deb11u9
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3dd4e643ab64cbc9b781c7518d6b0fb35a0d7269
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3dd4e643ab64cbc9b781c7518d6b0fb35a0d7269
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
