[Git][security-tracker-team/security-tracker][master] shaarli spu/ospu

Moritz Muehlenhoff (@jmm) jmm at debian.org
Sat Aug 30 19:12:05 BST 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8ef60a35 by Moritz Mühlenhoff at 2025-08-30T20:11:11+02:00
shaarli spu/ospu

- - - - -


3 changed files:

- data/CVE/list
- data/next-oldstable-point-update.txt
- data/next-point-update.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -3867,6 +3867,8 @@ CVE-2025-55293 (Meshtastic is an open source mesh networking solution. Prior to
 	NOT-FOR-US: Meshtastic
 CVE-2025-55291 (Shaarli is a minimalist bookmark manager and link sharing service. Pri ...)
 	- shaarli 0.15.0+dfsg-1 (bug #1111589)
+	[trixie] - shaarli <no-dsa> (Minor issue, will be fixed in point release)
+	[bookworm] - shaarli <no-dsa> (Minor issue, will be fixed in point release)
 	NOTE: https://github.com/shaarli/Shaarli/security/advisories/GHSA-7w7w-pw4j-265h
 	NOTE: https://github.com/shaarli/Shaarli/commit/66faa61335a6e72184be64092ff1242ffa4fe5b6 (v0.15.0)
 CVE-2025-55288 (Genealogy is a family tree PHP application. Prior to 4.4.0, Authentica ...)


=====================================
data/next-oldstable-point-update.txt
=====================================
@@ -370,3 +370,5 @@ CVE-2025-40909
 	[bookworm] - perl 5.36.0-7+deb12u3
 CVE-2025-53859
 	[bookworm] - nginx 1.22.1-9+deb12u3
+CVE-2025-55291
+	[bookworm] - shaarli 0.12.1+dfsg-8+deb12u1


=====================================
data/next-point-update.txt
=====================================
@@ -59,3 +59,5 @@ CVE-2025-XXXX [OSSN-0094]
 	[trixie] - watcher 14.0.0-1+deb13u1
 CVE-2025-53859
 	[trixie] - nginx 1.26.3-3+deb13u1
+CVE-2025-55291
+	[trixie] - shaarli 0.14.0+dfsg-2



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8ef60a3595a67a559a5cd379006ddb5be6596b53

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8ef60a3595a67a559a5cd379006ddb5be6596b53
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250830/38c753c0/attachment.htm>

More information about the debian-security-tracker-commits mailing list