[Git][security-tracker-team/security-tracker][master] 2 commits: Correct a mistake for embed code copy jquery-validation

Bastien Roucariès (@rouca) rouca at debian.org
Fri Apr 25 22:18:40 BST 2025 


Bastien Roucariès pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1e58340c by Bastien Roucariès at 2025-04-25T23:08:48+02:00
Correct a mistake for embed code copy jquery-validation

It is znuny package not otrs2

- - - - -
903330d6 by Bastien Roucariès at 2025-04-25T23:18:07+02:00
Add bug for CVE-2025-3573

- - - - -


2 changed files:

- data/CVE/list
- data/embedded-code-copies


Changes:

=====================================
data/CVE/list
=====================================
@@ -3714,8 +3714,8 @@ CVE-2025-3576 (A vulnerability in the MIT Kerberos implementation allows GSSAPI-
 	NOTE: explicitly configured with the new allow_rc4 or allow_des3 variables respectively.
 CVE-2025-3573 (Versions of the package jquery-validation before 1.20.0 are vulnerable ...)
 	- civicrm <unfixed> (bug #1103445)
-	- kalkun <unfixed>
-	- otrs2 <unfixed>
+	- kalkun <unfixed> (bug #1104134)
+	- znuny <unfixed> (bug #1104136)
 	- phpmyadmin <unfixed>
 	NOTE: https://github.com/jquery-validation/jquery-validation/pull/2462
 	NOTE: https://github.com/jquery-validation/jquery-validation/commit/7a490d8f39bd988027568ddcf51755e1f4688902


=====================================
data/embedded-code-copies
=====================================
@@ -3827,5 +3827,5 @@ xxhash
 jquery-validation (not packaged in Debian, need ITP)
 	- civicrm <unfixed> (embed)
 	- kalkun <unfixed> (embed)
-	- otrs2 <unfixed (embed)
+	- znuny <unfixed (embed)
 	- phpmyadmin <unfixed> (embed)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/bda640a7d0a5646a399ee5c2624a3b8302221db7...903330d666f8110cec1e41e23829cd9d7a80de88

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/bda640a7d0a5646a399ee5c2624a3b8302221db7...903330d666f8110cec1e41e23829cd9d7a80de88
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250425/58ef921b/attachment.htm>

More information about the debian-security-tracker-commits mailing list