Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6f20c32d by Salvatore Bonaccorso at 2026-06-05T20:39:47+02:00
Track fixes via experimental for openbabel issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -56114,6 +56114,7 @@ CVE-2026-3410 (A weakness has been identified in
itsourcecode Society Management
CVE-2026-3409 (A security flaw has been discovered in eosphoros-ai db-gpt
0.7.5. Affe ...)
NOT-FOR-US: eosphoros-ai db-gpt
CVE-2026-3408 (A vulnerability was identified in Open Babel up to 3.1.1. This
impacts ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1129566)
[trixie] - openbabel <no-dsa> (Minor issue)
[bookworm] - openbabel <no-dsa> (Minor issue)
@@ -60733,6 +60734,7 @@ CVE-2026-2709 (A flaw has been found in busy up to
2.5.5. The affected element i
CVE-2026-2706 (A flaw has been found in code-projects Patient Record
Management Syste ...)
NOT-FOR-US: code-projects
CVE-2026-2705 (A vulnerability was detected in Open Babel up to 3.1.1. The
impacted e ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1129566)
[trixie] - openbabel <no-dsa> (Minor issue)
[bookworm] - openbabel <no-dsa> (Minor issue)
@@ -60741,6 +60743,7 @@ CVE-2026-2705 (A vulnerability was detected in Open
Babel up to 3.1.1. The impac
NOTE: https://github.com/openbabel/openbabel/pull/2862
NOTE: Fixed by:
https://github.com/openbabel/openbabel/commit/e23a224b8fd9d7c2a7cde9ef4ec6afb4c05aa08a
CVE-2026-2704 (A security vulnerability has been detected in Open Babel up to
3.1.1. ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1129566)
[trixie] - openbabel <no-dsa> (Minor issue)
[bookworm] - openbabel <no-dsa> (Minor issue)
@@ -116554,42 +116557,49 @@ CVE-2025-1396 (A username enumeration vulnerability
exists in multiple WSO2 prod
CVE-2025-11005 (Improper Neutralization of Special Elements used in an OS
Command ('OS ...)
NOT-FOR-US: Palo Alto Networks
CVE-2025-11000 (A vulnerability was determined in Open Babel up to 3.1.1. This
affects ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1116462)
[trixie] - openbabel <no-dsa> (Minor issue)
[bookworm] - openbabel <no-dsa> (Minor issue)
[bullseye] - openbabel <postponed> (Minor issue; can only be performed
from a local environment)
NOTE: https://github.com/openbabel/openbabel/issues/2826
CVE-2025-10999 (A vulnerability was found in Open Babel up to 3.1.1. The
impacted elem ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1116462)
[trixie] - openbabel <no-dsa> (Minor issue)
[bookworm] - openbabel <no-dsa> (Minor issue)
[bullseye] - openbabel <postponed> (Minor issue; can only be performed
from a local environment)
NOTE: https://github.com/openbabel/openbabel/issues/2827
CVE-2025-10998 (A vulnerability has been found in Open Babel up to 3.1.1. The
affected ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1116462)
[trixie] - openbabel <no-dsa> (Minor issue)
[bookworm] - openbabel <no-dsa> (Minor issue)
[bullseye] - openbabel <postponed> (Minor issue; can only be performed
from a local environment)
NOTE: https://github.com/openbabel/openbabel/issues/2829
CVE-2025-10997 (A flaw has been found in Open Babel up to 3.1.1. Impacted is
the funct ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1116462)
[trixie] - openbabel <no-dsa> (Minor issue)
[bookworm] - openbabel <no-dsa> (Minor issue)
[bullseye] - openbabel <postponed> (Minor issue; can only be performed
from a local environment)
NOTE: https://github.com/openbabel/openbabel/issues/2830
CVE-2025-10996 (A vulnerability was detected in Open Babel up to 3.1.1. This
issue aff ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1116462)
[trixie] - openbabel <no-dsa> (Minor issue)
[bookworm] - openbabel <no-dsa> (Minor issue)
[bullseye] - openbabel <postponed> (Minor issue; can only be performed
from a local environment)
NOTE: https://github.com/openbabel/openbabel/issues/2831
CVE-2025-10995 (A security vulnerability has been detected in Open Babel up to
3.1.1. ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
[trixie] - openbabel <no-dsa> (Minor issue)
[bookworm] - openbabel <no-dsa> (Minor issue)
- openbabel <unfixed> (bug #1116462)
[bullseye] - openbabel <postponed> (Minor issue; can only be performed
from a local environment)
NOTE: https://github.com/openbabel/openbabel/issues/2832
CVE-2025-10994 (A weakness has been identified in Open Babel up to 3.1.1. This
affects ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1116462)
[trixie] - openbabel <no-dsa> (Minor issue)
[bookworm] - openbabel <no-dsa> (Minor issue)
@@ -378024,6 +378034,7 @@ CVE-2022-46305 (ChangingTec ServiSign component has a
path traversal vulnerabili
CVE-2022-46304 (ChangingTec ServiSign component has insufficient filtering for
special ...)
NOT-FOR-US: ChangingTec ServiSign
CVE-2022-46295 (Multiple out-of-bounds write vulnerabilities exist in the
translationV ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
@@ -378032,6 +378043,7 @@ CVE-2022-46295 (Multiple out-of-bounds write
vulnerabilities exist in the transl
NOTE:
https://talosintelligence.com/vulnerability_reports/TALOS-2022-1666
NOTE: https://github.com/openbabel/openbabel/issues/2650
CVE-2022-46294 (Multiple out-of-bounds write vulnerabilities exist in the
translationV ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
@@ -378040,6 +378052,7 @@ CVE-2022-46294 (Multiple out-of-bounds write
vulnerabilities exist in the transl
NOTE:
https://talosintelligence.com/vulnerability_reports/TALOS-2022-1666
NOTE: https://github.com/openbabel/openbabel/issues/2650
CVE-2022-46293 (Multiple out-of-bounds write vulnerabilities exist in the
translationV ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
@@ -378048,6 +378061,7 @@ CVE-2022-46293 (Multiple out-of-bounds write
vulnerabilities exist in the transl
NOTE:
https://talosintelligence.com/vulnerability_reports/TALOS-2022-1666
NOTE: https://github.com/openbabel/openbabel/issues/2650
CVE-2022-46292 (Multiple out-of-bounds write vulnerabilities exist in the
translationV ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
@@ -378056,6 +378070,7 @@ CVE-2022-46292 (Multiple out-of-bounds write
vulnerabilities exist in the transl
NOTE:
https://talosintelligence.com/vulnerability_reports/TALOS-2022-1666
NOTE: https://github.com/openbabel/openbabel/issues/2650
CVE-2022-46291 (Multiple out-of-bounds write vulnerabilities exist in the
translationV ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
@@ -378064,6 +378079,7 @@ CVE-2022-46291 (Multiple out-of-bounds write
vulnerabilities exist in the transl
NOTE:
https://talosintelligence.com/vulnerability_reports/TALOS-2022-1666
NOTE: https://github.com/openbabel/openbabel/issues/2650
CVE-2022-46290 (Multiple out-of-bounds write vulnerabilities exist in the ORCA
format ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
@@ -378072,6 +378088,7 @@ CVE-2022-46290 (Multiple out-of-bounds write
vulnerabilities exist in the ORCA f
NOTE:
https://talosintelligence.com/vulnerability_reports/TALOS-2022-1665
NOTE: https://github.com/openbabel/openbabel/issues/2650
CVE-2022-46289 (Multiple out-of-bounds write vulnerabilities exist in the ORCA
format ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
@@ -378080,6 +378097,7 @@ CVE-2022-46289 (Multiple out-of-bounds write
vulnerabilities exist in the ORCA f
NOTE:
https://talosintelligence.com/vulnerability_reports/TALOS-2022-1665
NOTE: https://github.com/openbabel/openbabel/issues/2650
CVE-2022-46280 (A use of uninitialized pointer vulnerability exists in the PQS
format ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
@@ -378124,6 +378142,7 @@ CVE-2022-44615
CVE-2022-44453
RESERVED
CVE-2022-44451 (A use of uninitialized pointer vulnerability exists in the MSI
format ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
@@ -378138,6 +378157,7 @@ CVE-2022-43663 (An integer conversion vulnerability
exists in the SORBAx64.dll R
CVE-2022-43503
REJECTED
CVE-2022-43467 (An out-of-bounds write vulnerability exists in the PQS format
coord_fi ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
@@ -378146,6 +378166,7 @@ CVE-2022-43467 (An out-of-bounds write vulnerability
exists in the PQS format co
NOTE:
https://talosintelligence.com/vulnerability_reports/TALOS-2022-1671
NOTE: https://github.com/openbabel/openbabel/issues/2650
CVE-2022-42885 (A use of uninitialized pointer vulnerability exists in the GRO
format ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
@@ -378234,6 +378255,7 @@ CVE-2022-4180 (Use after free in Mojo in Google
Chrome prior to 108.0.5359.71 al
CVE-2022-41795
RESERVED
CVE-2022-41793 (An out-of-bounds write vulnerability exists in the CSR format
title fu ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
@@ -378279,6 +378301,7 @@ CVE-2022-4172 (An integer overflow and buffer
overflow issues were found in the
CVE-2022-40973
RESERVED
CVE-2022-37331 (An out-of-bounds write vulnerability exists in the Gaussian
format ori ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
@@ -388540,6 +388563,7 @@ CVE-2022-3649 (A vulnerability was found in Linux
Kernel. It has been classified
[bullseye] - linux 5.10.148-1
NOTE:
https://git.kernel.org/linus/d325dc6eb763c10f591c239550b8c7e5466a5d09
CVE-2022-43607 (An out-of-bounds write vulnerability exists in the MOL2 format
attribu ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed
upstream)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6f20c32d1d98acfe8ab68737a144591f10ac9c9f
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6f20c32d1d98acfe8ab68737a144591f10ac9c9f
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
