Aron Xu pushed to branch master at Debian Security Tracker / security-tracker
Commits:
37447e10 by Aron Xu at 2026-07-08T20:11:56+08:00
Revert "fix syntax"
This reverts commit 9912f706c2461ca9facea4c5d2a02a0c50e66b2c.
- - - - -
32ea80d4 by Aron Xu at 2026-07-08T20:12:00+08:00
Revert "track libxml2 fixes from stable-pu"
This reverts commit 6502cfecee7d3af7ae735dbf769bed710ddaa1a8.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -92424,7 +92424,6 @@ CVE-2026-1760 (A flaw was found in SoupServer. This
HTTP request smuggling vulne
CVE-2026-1757 (A flaw was identified in the interactive shell of the xmllint
utility, ...)
{DLA-4622-1}
- libxml2 2.15.2+dfsg-0.1 (unimportant)
- [trixie] - libxml2 2.12.7+dfsg+really2.9.14-2.1+deb13u3
NOTE: https://gitlab.gnome.org/GNOME/libxml2/-/issues/1009
NOTE: Fixed by:
https://gitlab.gnome.org/GNOME/libxml2/-/commit/160c8a43ba37dfb07ebe6446fbad9d0973d9279d
NOTE: Fixed by:
https://gitlab.gnome.org/GNOME/libxml2/-/commit/5446460ad3229579c91506317fb80ab333d44414
(v2.15.2)
@@ -98793,7 +98792,7 @@ CVE-2026-20047 (A vulnerability in the web-based
management interface of Cisco I
CVE-2026-0992 (A flaw was found in the libxml2 library. This uncontrolled
resource co ...)
{DLA-4622-1}
- libxml2 2.15.2+dfsg-0.1 (bug #1125696)
- [trixie] - libxml2 2.12.7+dfsg+really2.9.14-2.1+deb13u3
+ [trixie] - libxml2 <no-dsa> (Minor issue)
[bookworm] - libxml2 <no-dsa> (Minor issue)
NOTE: https://gitlab.gnome.org/GNOME/libxml2/-/issues/1019
NOTE: Fixed by:
https://gitlab.gnome.org/GNOME/libxml2/-/commit/f75abfcaa419a740a3191e56c60400f3ff18988d
@@ -98805,7 +98804,7 @@ CVE-2026-0992 (A flaw was found in the libxml2 library.
This uncontrolled resour
CVE-2026-0990 (A flaw was found in libxml2, an XML parsing library. This
uncontrolled ...)
{DLA-4622-1}
- libxml2 2.15.2+dfsg-0.1 (bug #1125695)
- [trixie] - libxml2 2.12.7+dfsg+really2.9.14-2.1+deb13u3
+ [trixie] - libxml2 <no-dsa> (Minor issue)
[bookworm] - libxml2 <no-dsa> (Minor issue)
NOTE: https://gitlab.gnome.org/GNOME/libxml2/-/issues/1018
NOTE: Fixed by:
https://gitlab.gnome.org/GNOME/libxml2/-/commit/1961208e958ca22f80a0b4e4c9d71cfa050aa982
@@ -98815,7 +98814,7 @@ CVE-2026-0990 (A flaw was found in libxml2, an XML
parsing library. This uncontr
CVE-2026-0989 (A flaw was identified in the RelaxNG parser of libxml2 related
to how ...)
{DLA-4622-1}
- libxml2 2.15.2+dfsg-0.1 (bug #1125691)
- [trixie] - libxml2 2.12.7+dfsg+really2.9.14-2.1+deb13u3
+ [trixie] - libxml2 <no-dsa> (Minor issue)
[bookworm] - libxml2 <no-dsa> (Minor issue)
NOTE: https://gitlab.gnome.org/GNOME/libxml2/-/issues/998
NOTE: https://gitlab.gnome.org/GNOME/libxml2/-/merge_requests/374
@@ -158938,7 +158937,6 @@ CVE-2025-8733
CVE-2025-8732 (A vulnerability was found in libxml2 up to 2.14.5. It has been
declare ...)
{DLA-4622-1}
- libxml2 2.15.2+dfsg-0.1 (unimportant)
- [trixie] - libxml2 2.12.7+dfsg+really2.9.14-2.1+deb13u3
NOTE: https://gitlab.gnome.org/GNOME/libxml2/-/issues/958
NOTE: https://gitlab.gnome.org/GNOME/libxml2/-/issues/958#note_2505853
NOTE: Fixed by:
https://gitlab.gnome.org/GNOME/libxml2/-/commit/3425dece47c8db600f8d7328ae2d7ddfaa0d7b2d
(v2.15.2)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/9912f706c2461ca9facea4c5d2a02a0c50e66b2c...32ea80d4ec8ec311b2bb0cb0582f44ae64951c43
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/9912f706c2461ca9facea4c5d2a02a0c50e66b2c...32ea80d4ec8ec311b2bb0cb0582f44ae64951c43
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits