[Git][security-tracker-team/security-tracker][master] Add CVE-2025-57803/imagemagick
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Aug 26 21:34:03 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
10e76968 by Salvatore Bonaccorso at 2025-08-26T22:33:34+02:00
Add CVE-2025-57803/imagemagick
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -32,7 +32,10 @@ CVE-2025-57813 (traQ is a messenger application built for Digital Creators Club
CVE-2025-57810 (jsPDF is a library to generate PDFs in JavaScript. Prior to 3.0.2, use ...)
- jspdf <itp> (bug #998381)
CVE-2025-57803 (ImageMagick is free and open-source software used for editing and mani ...)
- TODO: check
+ - imagemagick <unfixed>
+ NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-mxvv-97wh-cfmm
+ NOTE: https://github.com/ImageMagick/ImageMagick/commit/2c55221f4d38193adcb51056c14cf238fbcc35d7 (7.1.2-2)
+ NOTE: https://github.com/ImageMagick/ImageMagick6/commit/e49c68c88eed6e68145480a471650daa9ed87217 (6.9.13-28)
CVE-2025-57425 (A Stored Cross-Site Scripting (XSS) vulnerability in SourceCodester FA ...)
NOT-FOR-US: SourceCodester
CVE-2025-56432 (A cross-site scripting (XSS) vulnerability exists in Nagios XI 2024R2. ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/10e769682ffe763f44dfe01f4cccd08f801d3a38
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/10e769682ffe763f44dfe01f4cccd08f801d3a38
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250826/2b040ebe/attachment.htm>
More information about the debian-security-tracker-commits
mailing list