Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6c198be4 by Sylvain Beucler at 2026-01-30T16:17:01+01:00
CVE-2025-14932..13936/netcdf,netcdf-parallel: bullseye postponed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -15911,45 +15911,55 @@ CVE-2025-14936 (NSF Unidata NetCDF-C Attribute Name
Stack-based Buffer Overflow
- netcdf <unfixed> (bug #1123960)
[trixie] - netcdf <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - netcdf <postponed> (Minor issue, revisit when fixed
upstream)
+ [bullseye] - netcdf <postponed> (Minor issue, revisit when fixed
upstream)
- netcdf-parallel <unfixed> (bug #1123961)
[trixie] - netcdf-parallel <postponed> (Minor issue, revisit when fixed
upstream)
[bookworm] - netcdf-parallel <postponed> (Minor issue, revisit when
fixed upstream)
+ [bullseye] - netcdf-parallel <postponed> (Minor issue, revisit when
fixed upstream)
NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-1155/
NOTE: https://github.com/Unidata/netcdf-c/issues/3236
CVE-2025-14935 (NSF Unidata NetCDF-C Dimension Name Heap-based Buffer Overflow
Remote ...)
- netcdf <unfixed> (bug #1123960)
[trixie] - netcdf <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - netcdf <postponed> (Minor issue, revisit when fixed
upstream)
+ [bullseye] - netcdf <postponed> (Minor issue, revisit when fixed
upstream)
- netcdf-parallel <unfixed> (bug #1123961)
[trixie] - netcdf-parallel <postponed> (Minor issue, revisit when fixed
upstream)
[bookworm] - netcdf-parallel <postponed> (Minor issue, revisit when
fixed upstream)
+ [bullseye] - netcdf-parallel <postponed> (Minor issue, revisit when
fixed upstream)
NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-1154/
NOTE: https://github.com/Unidata/netcdf-c/issues/3236
CVE-2025-14934 (NSF Unidata NetCDF-C Variable Name Stack-based Buffer Overflow
Remote ...)
- netcdf <unfixed> (bug #1123960)
[trixie] - netcdf <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - netcdf <postponed> (Minor issue, revisit when fixed
upstream)
+ [bullseye] - netcdf <postponed> (Minor issue, revisit when fixed
upstream)
- netcdf-parallel <unfixed> (bug #1123961)
[trixie] - netcdf-parallel <postponed> (Minor issue, revisit when fixed
upstream)
[bookworm] - netcdf-parallel <postponed> (Minor issue, revisit when
fixed upstream)
+ [bullseye] - netcdf-parallel <postponed> (Minor issue, revisit when
fixed upstream)
NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-1152/
NOTE: https://github.com/Unidata/netcdf-c/issues/3236
CVE-2025-14933 (NSF Unidata NetCDF-C NC Variable Integer Overflow Remote Code
Executio ...)
- netcdf <unfixed> (bug #1123960)
[trixie] - netcdf <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - netcdf <postponed> (Minor issue, revisit when fixed
upstream)
+ [bullseye] - netcdf <postponed> (Minor issue, revisit when fixed
upstream)
- netcdf-parallel <unfixed> (bug #1123961)
[trixie] - netcdf-parallel <postponed> (Minor issue, revisit when fixed
upstream)
[bookworm] - netcdf-parallel <postponed> (Minor issue, revisit when
fixed upstream)
+ [bullseye] - netcdf-parallel <postponed> (Minor issue, revisit when
fixed upstream)
NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-1151/
NOTE: https://github.com/Unidata/netcdf-c/issues/3236
CVE-2025-14932 (NSF Unidata NetCDF-C Time Unit Stack-based Buffer Overflow
Remote Code ...)
- netcdf <unfixed> (bug #1123960)
[trixie] - netcdf <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - netcdf <postponed> (Minor issue, revisit when fixed
upstream)
+ [bullseye] - netcdf <postponed> (Minor issue, revisit when fixed
upstream)
- netcdf-parallel <unfixed> (bug #1123961)
[trixie] - netcdf-parallel <postponed> (Minor issue, revisit when fixed
upstream)
[bookworm] - netcdf-parallel <postponed> (Minor issue, revisit when
fixed upstream)
+ [bullseye] - netcdf-parallel <postponed> (Minor issue, revisit when
fixed upstream)
NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-1153/
NOTE: https://github.com/Unidata/netcdf-c/issues/3236
CVE-2025-14931 (Hugging Face smolagents Remote Python Executor Deserialization
of Untr ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6c198be4381d227886fc292566290463c2d3a072
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6c198be4381d227886fc292566290463c2d3a072
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
