Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
615139df by Salvatore Bonaccorso at 2026-06-13T13:42:00+02:00
Add Debian bug reference for assimp issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -8823,31 +8823,31 @@ CVE-2026-10235 (A flaw has been found in CodeAstro 
Ingredients Stock Management
 CVE-2026-10234 (A vulnerability was detected in Mettle sendportal up to 3.0.1. 
This af ...)
        NOT-FOR-US: Mettle sendportal
 CVE-2026-10233 (A security vulnerability has been detected in Assimp up to 
6.0.4. Affe ...)
-       - assimp <unfixed>
+       - assimp <unfixed> (bug #1139916)
        [trixie] - assimp <postponed> (Minor issue, revisit when fixed upstream)
        [bookworm] - assimp <postponed> (Minor issue, revisit when fixed 
upstream)
        [bullseye] - assimp <postponed> (Minor issue, revisit when fixed 
upstream)
        NOTE: https://github.com/assimp/assimp/issues/6619
 CVE-2026-10232 (A weakness has been identified in Assimp up to 6.0.4. Affected 
by this ...)
-       - assimp <unfixed>
+       - assimp <unfixed> (bug #1139916)
        [trixie] - assimp <postponed> (Minor issue, revisit when fixed upstream)
        [bookworm] - assimp <postponed> (Minor issue, revisit when fixed 
upstream)
        [bullseye] - assimp <postponed> (Minor issue, revisit when fixed 
upstream)
        NOTE: https://github.com/assimp/assimp/issues/6617
 CVE-2026-10231 (A security flaw has been discovered in Assimp up to 6.0.4. 
Affected is ...)
-       - assimp <unfixed>
+       - assimp <unfixed> (bug #1139916)
        [trixie] - assimp <postponed> (Minor issue, revisit when fixed upstream)
        [bookworm] - assimp <postponed> (Minor issue, revisit when fixed 
upstream)
        [bullseye] - assimp <postponed> (Minor issue, revisit when fixed 
upstream)
        NOTE: https://github.com/assimp/assimp/issues/6616
 CVE-2026-10230 (A vulnerability was identified in Assimp up to 6.0.4. This 
impacts the ...)
-       - assimp <unfixed>
+       - assimp <unfixed> (bug #1139916)
        [trixie] - assimp <postponed> (Minor issue, revisit when fixed upstream)
        [bookworm] - assimp <postponed> (Minor issue, revisit when fixed 
upstream)
        [bullseye] - assimp <postponed> (Minor issue, revisit when fixed 
upstream)
        NOTE: https://github.com/assimp/assimp/issues/6615
 CVE-2026-10229 (A vulnerability was determined in Assimp up to 6.0.4. This 
affects the ...)
-       - assimp <unfixed>
+       - assimp <unfixed> (bug #1139916)
        [trixie] - assimp <postponed> (Minor issue, revisit when fixed upstream)
        [bookworm] - assimp <postponed> (Minor issue, revisit when fixed 
upstream)
        [bullseye] - assimp <postponed> (Minor issue, revisit when fixed 
upstream)
@@ -8905,19 +8905,19 @@ CVE-2026-10203 (A security flaw has been discovered in 
OFCMS 1.1.3. Impacted is
 CVE-2026-10202 (A vulnerability was identified in OFCMS 1.1.3. This issue 
affects the  ...)
        NOT-FOR-US: OFCMS
 CVE-2026-10201 (A vulnerability was determined in Assimp up to 6.0.4. This 
vulnerabili ...)
-       - assimp <unfixed>
+       - assimp <unfixed> (bug #1139916)
        [trixie] - assimp <postponed> (Minor issue, revisit when fixed upstream)
        [bookworm] - assimp <postponed> (Minor issue, revisit when fixed 
upstream)
        [bullseye] - assimp <postponed> (Minor issue, revisit when fixed 
upstream)
        NOTE: https://github.com/assimp/assimp/issues/6613
 CVE-2026-10200 (A vulnerability was found in Assimp up to 6.0.4. This affects 
the func ...)
-       - assimp <unfixed>
+       - assimp <unfixed> (bug #1139916)
        [trixie] - assimp <postponed> (Minor issue, revisit when fixed upstream)
        [bookworm] - assimp <postponed> (Minor issue, revisit when fixed 
upstream)
        [bullseye] - assimp <postponed> (Minor issue, revisit when fixed 
upstream)
        NOTE: https://github.com/assimp/assimp/issues/6612
 CVE-2026-10199 (A vulnerability has been found in Assimp up to 6.0.4. Affected 
by this ...)
-       - assimp <unfixed>
+       - assimp <unfixed> (bug #1139916)
        [trixie] - assimp <no-dsa> (Minor issue)
        [bookworm] - assimp <no-dsa> (Minor issue)
        [bullseye] - assimp <postponed> (Minor issue)
@@ -8925,13 +8925,13 @@ CVE-2026-10199 (A vulnerability has been found in 
Assimp up to 6.0.4. Affected b
        NOTE: https://github.com/assimp/assimp/pull/6646
        NOTE: 
https://github.com/assimp/assimp/commit/d24b85319bd70c65883a2b96613e07e23fb95981
 CVE-2026-10198 (A flaw has been found in Assimp up to 6.0.4. Affected by this 
vulnerab ...)
-       - assimp <unfixed>
+       - assimp <unfixed> (bug #1139916)
        [trixie] - assimp <postponed> (Minor issue, revisit when fixed upstream)
        [bookworm] - assimp <postponed> (Minor issue, revisit when fixed 
upstream)
        [bullseye] - assimp <postponed> (Minor issue, revisit when fixed 
upstream)
        NOTE: https://github.com/assimp/assimp/issues/6609
 CVE-2026-10197 (A vulnerability was detected in Assimp up to 6.0.4. Affected 
is the fu ...)
-       - assimp <unfixed>
+       - assimp <unfixed> (bug #1139916)
        [trixie] - assimp <no-dsa> (Minor issue)
        [bookworm] - assimp <no-dsa> (Minor issue)
        [bullseye] - assimp <postponed> (Minor issue)
@@ -28698,14 +28698,14 @@ CVE-2026-1921 (The Loco Translate plugin for 
WordPress is vulnerable to Path Tra
 CVE-2026-0073 (In adbd_tls_verify_cert of auth.cpp, there is a possible bypass 
of wir ...)
        NOT-FOR-US: Android
 CVE-2025-70072 (An issue in Assimp v.6.0.2 allows a remote attacker to cause a 
denial  ...)
-       - assimp <unfixed>
+       - assimp <unfixed> (bug #1139916)
        [trixie] - assimp <no-dsa> (Minor issue)
        [bookworm] - assimp <no-dsa> (Minor issue)
        [bullseye] - assimp <no-dsa> (Minor issue)
        NOTE: https://gist.github.com/GunP4ng/cdaf0cb89dc6f1d09a9e88fa1135894e
        NOTE: https://github.com/assimp/assimp/issues/6635
 CVE-2025-70071 (An issue in Assimp v.6.0.2 allows a remote attacker to cause a 
denial  ...)
-       - assimp <unfixed>
+       - assimp <unfixed> (bug #1139916)
        [trixie] - assimp <no-dsa> (Minor issue)
        [bookworm] - assimp <no-dsa> (Minor issue)
        [bullseye] - assimp <no-dsa> (Minor issue)
@@ -28740,19 +28740,19 @@ CVE-2026-43870 (Origin Validation Error, Improper 
Limitation of a Pathname to a
        NOTE: https://www.openwall.com/lists/oss-security/2026/05/05/4
        NOTE: nodejs bindings not built in Debian package
 CVE-2025-70070 (An issue in Assimp v.6.0.2 allows a remote attacker to cause a 
denial  ...)
-       - assimp <unfixed>
+       - assimp <unfixed> (bug #1139916)
        [trixie] - assimp <no-dsa> (Minor issue)
        [bookworm] - assimp <no-dsa> (Minor issue)
        [bullseye] - assimp <no-dsa> (Minor issue)
        NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2465295
 CVE-2025-70069 (An issue in Assimp v.6.0.2 allows a remote attacker to cause a 
denial  ...)
-       - assimp <unfixed>
+       - assimp <unfixed> (bug #1139916)
        [trixie] - assimp <no-dsa> (Minor issue)
        [bookworm] - assimp <no-dsa> (Minor issue)
        [bullseye] - assimp <no-dsa> (Minor issue)
        NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2465306
 CVE-2025-70067 (Buffer Overflow vulnerability exists in Assimp versions up to 
6.0.2 in ...)
-       - assimp <unfixed>
+       - assimp <unfixed> (bug #1139916)
        [trixie] - assimp <no-dsa> (Minor issue)
        [bookworm] - assimp <no-dsa> (Minor issue)
        [bullseye] - assimp <no-dsa> (Minor issue)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/615139df978e5fe5e13b6c135ba590820ca6c359

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/615139df978e5fe5e13b6c135ba590820ca6c359
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help


_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to