[Git][security-tracker-team/security-tracker][master] dla-needed: remove sqlite3

[Paride Legovini (@paride)]

Paride Legovini pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9b87689d by Paride Legovini at 2025-08-18T09:28:54+02:00
dla-needed: remove sqlite3

CVE-2025-43967 does not affect bullseye, see 97d3c7f6c4bae.
There are no other CVEs for the package.

- - - - -


1 changed file:

- data/dla-needed.txt


Changes:

=====================================
data/dla-needed.txt
=====================================
@@ -373,15 +373,6 @@ sogo
   NOTE: 20240922: See also postponed issues.
   NOTE: 20250609: Please take care of vulnerable embed js (rouca)
 --
-sqlite3 (paride)
-  NOTE: 20250805: Added by Front-Desk (rouca)
-  NOTE: 20250805: CVE-2025-7458/leak should be fixed, maybe other postponed issue (rouca)
-  NOTE: 20250817: CVE-2025-7458 the CVE description mentions 3.39.2 as the first affected
-  NOTE: 20250817: version. This would mean that bullseye is not affected, as the packaged
-  NOTE: 20250817: version is 3.34.1. I am verifying that the vulnerability _actually_ got
-  NOTE: 20250817: introduced in 3.39.2. (paride)
-
---
 squid (rouca)
   NOTE: 20250805: Added by Front-Desk (rouca)
   NOTE: 20250815: will need to fix CVE-2023-5824



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9b87689dfd4efa3b8a2746d7a2b23967122d9bde

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9b87689dfd4efa3b8a2746d7a2b23967122d9bde
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250818/5d429d9a/attachment-0001.htm>