[Git][security-tracker-team/security-tracker][master] Add CVE-2025-54869/icingaweb2-module-pdfexport
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Aug 6 19:03:59 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
99c7a2eb by Salvatore Bonaccorso at 2025-08-06T20:03:26+02:00
Add CVE-2025-54869/icingaweb2-module-pdfexport
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -121,7 +121,10 @@ CVE-2025-54873 (RISC Zero is a zero-knowledge verifiable general computing platf
CVE-2025-54872 (onion-site-template is a complete, scalable tor hidden service self-ho ...)
NOT-FOR-US: onion-site-template
CVE-2025-54869 (FPDI is a collection of PHP classes that facilitate reading pages from ...)
- TODO: check
+ - icingaweb2-module-pdfexport <unfixed>
+ NOTE: https://github.com/Setasign/FPDI/security/advisories/GHSA-jxhh-4648-vpp3
+ NOTE: https://github.com/Setasign/FPDI/commit/ba671ba9221cffd32c2dda87316c19f522a1c5f0
+ NOTE: icingaweb2-module-pdfexport embedds FPDI
CVE-2025-54801 (Fiber is an Express inspired web framework written in Go. In versions ...)
NOT-FOR-US: Fiber
CVE-2025-54655 (Race condition vulnerability in the virtualization base module. Succes ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/99c7a2eb34de1561eb71cfb5f94553dba839ada0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/99c7a2eb34de1561eb71cfb5f94553dba839ada0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250806/54361b34/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list