[Git][security-tracker-team/security-tracker][master] Mark CVE-2025-50340 as unimportant
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Aug 14 22:48:11 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f4c3c871 by Salvatore Bonaccorso at 2025-08-14T23:47:41+02:00
Mark CVE-2025-50340 as unimportant
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3437,8 +3437,10 @@ CVE-2025-50420 (An issue in the pdfseparate utility of freedesktop poppler v25.0
NOTE: https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1849
NOTE: Fixed by: https://gitlab.freedesktop.org/poppler/poppler/-/commit/08d7894e4dd0e313c179e30f06ad8f546619b1b3
CVE-2025-50340 (An Insecure Direct Object Reference (IDOR) vulnerability was discovere ...)
- - sogo <unfixed> (bug #1110604)
+ - sogo <unfixed> (bug #1110604; unimportant)
NOTE: https://github.com/millad7/SOGo_web_mail-vulnerability-CVE-2025-50340
+ NOTE: https://www.mail-archive.com/users%40sogo.nu/msg34098.html
+ NOTE: Disputed secrurity relevance from upstream
CVE-2025-46206 (An issue in Artifex mupdf 1.25.6, 1.25.5 allows a remote attacker to c ...)
- mupdf 1.25.1+ds1-7 (bug #1110482)
[trixie] - mupdf <no-dsa> (Minor issue)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f4c3c871c7f160e1f6d5015a9ae0557105f6f95e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f4c3c871c7f160e1f6d5015a9ae0557105f6f95e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250814/276ccc8a/attachment.htm>
More information about the debian-security-tracker-commits
mailing list