Aron Xu pushed to branch master at Debian Security Tracker / security-tracker


Commits:
37447e10 by Aron Xu at 2026-07-08T20:11:56+08:00
Revert "fix syntax"

This reverts commit 9912f706c2461ca9facea4c5d2a02a0c50e66b2c.

- - - - -
32ea80d4 by Aron Xu at 2026-07-08T20:12:00+08:00
Revert "track libxml2 fixes from stable-pu"

This reverts commit 6502cfecee7d3af7ae735dbf769bed710ddaa1a8.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -92424,7 +92424,6 @@ CVE-2026-1760 (A flaw was found in SoupServer. This 
HTTP request smuggling vulne
 CVE-2026-1757 (A flaw was identified in the interactive shell of the xmllint 
utility, ...)
        {DLA-4622-1}
        - libxml2 2.15.2+dfsg-0.1 (unimportant)
-       [trixie] - libxml2 2.12.7+dfsg+really2.9.14-2.1+deb13u3
        NOTE: https://gitlab.gnome.org/GNOME/libxml2/-/issues/1009
        NOTE: Fixed by: 
https://gitlab.gnome.org/GNOME/libxml2/-/commit/160c8a43ba37dfb07ebe6446fbad9d0973d9279d
        NOTE: Fixed by: 
https://gitlab.gnome.org/GNOME/libxml2/-/commit/5446460ad3229579c91506317fb80ab333d44414
 (v2.15.2)
@@ -98793,7 +98792,7 @@ CVE-2026-20047 (A vulnerability in the web-based 
management interface of Cisco I
 CVE-2026-0992 (A flaw was found in the libxml2 library. This uncontrolled 
resource co ...)
        {DLA-4622-1}
        - libxml2 2.15.2+dfsg-0.1 (bug #1125696)
-       [trixie] - libxml2 2.12.7+dfsg+really2.9.14-2.1+deb13u3
+       [trixie] - libxml2 <no-dsa> (Minor issue)
        [bookworm] - libxml2 <no-dsa> (Minor issue)
        NOTE: https://gitlab.gnome.org/GNOME/libxml2/-/issues/1019
        NOTE: Fixed by: 
https://gitlab.gnome.org/GNOME/libxml2/-/commit/f75abfcaa419a740a3191e56c60400f3ff18988d
@@ -98805,7 +98804,7 @@ CVE-2026-0992 (A flaw was found in the libxml2 library. 
This uncontrolled resour
 CVE-2026-0990 (A flaw was found in libxml2, an XML parsing library. This 
uncontrolled ...)
        {DLA-4622-1}
        - libxml2 2.15.2+dfsg-0.1 (bug #1125695)
-       [trixie] - libxml2 2.12.7+dfsg+really2.9.14-2.1+deb13u3
+       [trixie] - libxml2 <no-dsa> (Minor issue)
        [bookworm] - libxml2 <no-dsa> (Minor issue)
        NOTE: https://gitlab.gnome.org/GNOME/libxml2/-/issues/1018
        NOTE: Fixed by: 
https://gitlab.gnome.org/GNOME/libxml2/-/commit/1961208e958ca22f80a0b4e4c9d71cfa050aa982
@@ -98815,7 +98814,7 @@ CVE-2026-0990 (A flaw was found in libxml2, an XML 
parsing library. This uncontr
 CVE-2026-0989 (A flaw was identified in the RelaxNG parser of libxml2 related 
to how  ...)
        {DLA-4622-1}
        - libxml2 2.15.2+dfsg-0.1 (bug #1125691)
-       [trixie] - libxml2 2.12.7+dfsg+really2.9.14-2.1+deb13u3
+       [trixie] - libxml2 <no-dsa> (Minor issue)
        [bookworm] - libxml2 <no-dsa> (Minor issue)
        NOTE: https://gitlab.gnome.org/GNOME/libxml2/-/issues/998
        NOTE: https://gitlab.gnome.org/GNOME/libxml2/-/merge_requests/374
@@ -158938,7 +158937,6 @@ CVE-2025-8733
 CVE-2025-8732 (A vulnerability was found in libxml2 up to 2.14.5. It has been 
declare ...)
        {DLA-4622-1}
        - libxml2 2.15.2+dfsg-0.1 (unimportant)
-       [trixie] - libxml2 2.12.7+dfsg+really2.9.14-2.1+deb13u3
        NOTE: https://gitlab.gnome.org/GNOME/libxml2/-/issues/958
        NOTE: https://gitlab.gnome.org/GNOME/libxml2/-/issues/958#note_2505853
        NOTE: Fixed by: 
https://gitlab.gnome.org/GNOME/libxml2/-/commit/3425dece47c8db600f8d7328ae2d7ddfaa0d7b2d
 (v2.15.2)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/9912f706c2461ca9facea4c5d2a02a0c50e66b2c...32ea80d4ec8ec311b2bb0cb0582f44ae64951c43

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/9912f706c2461ca9facea4c5d2a02a0c50e66b2c...32ea80d4ec8ec311b2bb0cb0582f44ae64951c43
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help


_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to