Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
615139df by Salvatore Bonaccorso at 2026-06-13T13:42:00+02:00
Add Debian bug reference for assimp issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -8823,31 +8823,31 @@ CVE-2026-10235 (A flaw has been found in CodeAstro
Ingredients Stock Management
CVE-2026-10234 (A vulnerability was detected in Mettle sendportal up to 3.0.1.
This af ...)
NOT-FOR-US: Mettle sendportal
CVE-2026-10233 (A security vulnerability has been detected in Assimp up to
6.0.4. Affe ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - assimp <postponed> (Minor issue, revisit when fixed
upstream)
[bullseye] - assimp <postponed> (Minor issue, revisit when fixed
upstream)
NOTE: https://github.com/assimp/assimp/issues/6619
CVE-2026-10232 (A weakness has been identified in Assimp up to 6.0.4. Affected
by this ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - assimp <postponed> (Minor issue, revisit when fixed
upstream)
[bullseye] - assimp <postponed> (Minor issue, revisit when fixed
upstream)
NOTE: https://github.com/assimp/assimp/issues/6617
CVE-2026-10231 (A security flaw has been discovered in Assimp up to 6.0.4.
Affected is ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - assimp <postponed> (Minor issue, revisit when fixed
upstream)
[bullseye] - assimp <postponed> (Minor issue, revisit when fixed
upstream)
NOTE: https://github.com/assimp/assimp/issues/6616
CVE-2026-10230 (A vulnerability was identified in Assimp up to 6.0.4. This
impacts the ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - assimp <postponed> (Minor issue, revisit when fixed
upstream)
[bullseye] - assimp <postponed> (Minor issue, revisit when fixed
upstream)
NOTE: https://github.com/assimp/assimp/issues/6615
CVE-2026-10229 (A vulnerability was determined in Assimp up to 6.0.4. This
affects the ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - assimp <postponed> (Minor issue, revisit when fixed
upstream)
[bullseye] - assimp <postponed> (Minor issue, revisit when fixed
upstream)
@@ -8905,19 +8905,19 @@ CVE-2026-10203 (A security flaw has been discovered in
OFCMS 1.1.3. Impacted is
CVE-2026-10202 (A vulnerability was identified in OFCMS 1.1.3. This issue
affects the ...)
NOT-FOR-US: OFCMS
CVE-2026-10201 (A vulnerability was determined in Assimp up to 6.0.4. This
vulnerabili ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - assimp <postponed> (Minor issue, revisit when fixed
upstream)
[bullseye] - assimp <postponed> (Minor issue, revisit when fixed
upstream)
NOTE: https://github.com/assimp/assimp/issues/6613
CVE-2026-10200 (A vulnerability was found in Assimp up to 6.0.4. This affects
the func ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - assimp <postponed> (Minor issue, revisit when fixed
upstream)
[bullseye] - assimp <postponed> (Minor issue, revisit when fixed
upstream)
NOTE: https://github.com/assimp/assimp/issues/6612
CVE-2026-10199 (A vulnerability has been found in Assimp up to 6.0.4. Affected
by this ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <no-dsa> (Minor issue)
[bookworm] - assimp <no-dsa> (Minor issue)
[bullseye] - assimp <postponed> (Minor issue)
@@ -8925,13 +8925,13 @@ CVE-2026-10199 (A vulnerability has been found in
Assimp up to 6.0.4. Affected b
NOTE: https://github.com/assimp/assimp/pull/6646
NOTE:
https://github.com/assimp/assimp/commit/d24b85319bd70c65883a2b96613e07e23fb95981
CVE-2026-10198 (A flaw has been found in Assimp up to 6.0.4. Affected by this
vulnerab ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - assimp <postponed> (Minor issue, revisit when fixed
upstream)
[bullseye] - assimp <postponed> (Minor issue, revisit when fixed
upstream)
NOTE: https://github.com/assimp/assimp/issues/6609
CVE-2026-10197 (A vulnerability was detected in Assimp up to 6.0.4. Affected
is the fu ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <no-dsa> (Minor issue)
[bookworm] - assimp <no-dsa> (Minor issue)
[bullseye] - assimp <postponed> (Minor issue)
@@ -28698,14 +28698,14 @@ CVE-2026-1921 (The Loco Translate plugin for
WordPress is vulnerable to Path Tra
CVE-2026-0073 (In adbd_tls_verify_cert of auth.cpp, there is a possible bypass
of wir ...)
NOT-FOR-US: Android
CVE-2025-70072 (An issue in Assimp v.6.0.2 allows a remote attacker to cause a
denial ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <no-dsa> (Minor issue)
[bookworm] - assimp <no-dsa> (Minor issue)
[bullseye] - assimp <no-dsa> (Minor issue)
NOTE: https://gist.github.com/GunP4ng/cdaf0cb89dc6f1d09a9e88fa1135894e
NOTE: https://github.com/assimp/assimp/issues/6635
CVE-2025-70071 (An issue in Assimp v.6.0.2 allows a remote attacker to cause a
denial ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <no-dsa> (Minor issue)
[bookworm] - assimp <no-dsa> (Minor issue)
[bullseye] - assimp <no-dsa> (Minor issue)
@@ -28740,19 +28740,19 @@ CVE-2026-43870 (Origin Validation Error, Improper
Limitation of a Pathname to a
NOTE: https://www.openwall.com/lists/oss-security/2026/05/05/4
NOTE: nodejs bindings not built in Debian package
CVE-2025-70070 (An issue in Assimp v.6.0.2 allows a remote attacker to cause a
denial ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <no-dsa> (Minor issue)
[bookworm] - assimp <no-dsa> (Minor issue)
[bullseye] - assimp <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2465295
CVE-2025-70069 (An issue in Assimp v.6.0.2 allows a remote attacker to cause a
denial ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <no-dsa> (Minor issue)
[bookworm] - assimp <no-dsa> (Minor issue)
[bullseye] - assimp <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2465306
CVE-2025-70067 (Buffer Overflow vulnerability exists in Assimp versions up to
6.0.2 in ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <no-dsa> (Minor issue)
[bookworm] - assimp <no-dsa> (Minor issue)
[bullseye] - assimp <no-dsa> (Minor issue)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/615139df978e5fe5e13b6c135ba590820ca6c359
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/615139df978e5fe5e13b6c135ba590820ca6c359
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits