[Git][security-tracker-team/security-tracker][master] php-dompdf-svg-lib / pdns-rec DSAs
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Wed Mar 20 19:00:57 GMT 2024
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
021197fb by Moritz Mühlenhoff at 2024-03-20T20:00:13+01:00
php-dompdf-svg-lib / pdns-rec DSAs
- - - - -
3 changed files:
- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -7399,7 +7399,6 @@ CVE-2024-25249 (An issue in He3 App for macOS version 2.0.17, allows remote atta
NOT-FOR-US: He3 App for macOS
CVE-2024-25117 (php-svg-lib is a scalable vector graphics (SVG) file parsing/rendering ...)
- php-dompdf-svg-lib 0.5.2-1 (bug #1064781)
- [bookworm] - php-dompdf-svg-lib <no-dsa> (Minor issue)
NOTE: https://github.com/dompdf/php-svg-lib/security/advisories/GHSA-f3qr-qr4x-j273
NOTE: https://github.com/dompdf/php-svg-lib/commit/732faa9fb4309221e2bd9b2fda5de44f947133aa (0.5.2)
NOTE: https://github.com/dompdf/php-svg-lib/commit/8ffcc41bbde39f09f94b9760768086f12bbdce42 (0.5.2)
=====================================
data/DSA/list
=====================================
@@ -1,3 +1,8 @@
+[20 Mar 2024] DSA-5626-2 pdns-recursor - regression update
+ [bookworm] - pdns-recursor 4.8.7-1
+[20 Mar 2024] DSA-5642-1 php-dompdf-svg-lib - security update
+ {CVE-2023-50251 CVE-2023-50252 CVE-2024-25117}
+ [bookworm] - php-dompdf-svg-lib 0.5.0-3+deb12u1
[19 Mar 2024] DSA-5641-1 fontforge - security update
{CVE-2024-25081 CVE-2024-25082}
[bullseye] - fontforge 1:20201107~dfsg-4+deb11u1
=====================================
data/dsa-needed.txt
=====================================
@@ -58,9 +58,6 @@ opennds/stable
--
php-cas/oldstable
--
-php-dompdf-svg-lib/stable (jmm)
- William Desportes is proposing an update needing review (6883e24c-b53d-4dcd-ad27-b944dbd688f3 at wdes.fr)
---
php-horde-mime-viewer/oldstable
--
php-horde-turba/oldstable
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/021197fbb14b781d914a7eea0c02e06f984a10b1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/021197fbb14b781d914a7eea0c02e06f984a10b1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240320/865ec95c/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list