[Git][security-tracker-team/security-tracker][master] Add CVE-2025-32414/libxml2
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Apr 8 11:03:32 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8b1fc9cb by Salvatore Bonaccorso at 2025-04-08T12:03:04+02:00
Add CVE-2025-32414/libxml2
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -71,7 +71,8 @@ CVE-2025-3362 (The web service of iSherlock from HGiga has an OS Command Injecti
CVE-2025-3361 (The web service of iSherlock from HGiga has an OS Command Injection vu ...)
NOT-FOR-US: HGiga
CVE-2025-32414 (In libxml2 before 2.13.8 and 2.14.x before 2.14.2, out-of-bounds memor ...)
- TODO: check
+ - libxml2 <unfixed>
+ NOTE: https://gitlab.gnome.org/GNOME/libxml2/-/issues/889
CVE-2025-32413 (Vulnerability-Lookup before 2.7.1 allows stored XSS via a user bio in ...)
TODO: check
CVE-2025-32409 (Ratta SuperNote A6 X2 Nomad before December 2024 allows remote code ex ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8b1fc9cb39d57c15bc3327732e5772ffbd077e74
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8b1fc9cb39d57c15bc3327732e5772ffbd077e74
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250408/46533985/attachment.htm>
More information about the debian-security-tracker-commits
mailing list