[Git][security-tracker-team/security-tracker][master] new assimp issues
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Tue Apr 1 11:22:41 BST 2025
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1f3b5a31 by Moritz Muehlenhoff at 2025-04-01T12:22:19+02:00
new assimp issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -31,9 +31,17 @@ CVE-2025-3018 (A vulnerability, which was classified as critical, was found in S
CVE-2025-3017 (A vulnerability, which was classified as critical, has been found in T ...)
NOT-FOR-US: TA-Lib
CVE-2025-3016 (A vulnerability classified as problematic was found in Open Asset Impo ...)
- TODO: check
+ - assimp <unfixed>
+ [bookworm] - assimp <no-dsa> (Minor issue)
+ NOTE: https://github.com/assimp/assimp/issues/6022
+ NOTE: https://github.com/assimp/assimp/pull/6046
+ NOTE: https://github.com/assimp/assimp/commit/5d2a7482312db2e866439a8c05a07ce1e718bed1
CVE-2025-3015 (A vulnerability classified as critical has been found in Open Asset Im ...)
- TODO: check
+ - assimp <unfixed>
+ [bookworm] - assimp <no-dsa> (Minor issue)
+ NOTE: https://github.com/assimp/assimp/issues/6021
+ NOTE: https://github.com/assimp/assimp/pull/6045
+ NOTE: https://github.com/assimp/assimp/commit/7c705fde418d68cca4e8eff56be01b2617b0d6fe
CVE-2025-31697 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
NOT-FOR-US: Drupal core and addons
CVE-2025-31696 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1f3b5a319de1bcc10a2a5ffbbb4e7b5ec0f245b8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1f3b5a319de1bcc10a2a5ffbbb4e7b5ec0f245b8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250401/f9f2dbce/attachment.htm>
More information about the debian-security-tracker-commits
mailing list