[Git][security-tracker-team/security-tracker][master] Track exiv2 issues fixed via unstable upload

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1ada4a5c by Salvatore Bonaccorso at 2025-08-31T13:48:51+02:00
Track exiv2 issues fixed via unstable upload

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -248,7 +248,7 @@ CVE-2025-55579 (SolidInvoice 2.3.7 and fixed in v.2.3.8 is vulnerable to Cross S
 	NOT-FOR-US: SolidInvoice
 CVE-2025-55304 (Exiv2 is a C++ library and a command-line utility to read, write, dele ...)
 	[experimental] - exiv2 0.28.7+dfsg-1
-	- exiv2 <unfixed> (bug #1112506)
+	- exiv2 0.28.7+dfsg-2 (bug #1112506)
 	[trixie] - exiv2 <no-dsa> (Minor issue)
 	[bookworm] - exiv2 <no-dsa> (Minor issue)
 	[bullseye] - exiv2 <postponed> (minor issue)
@@ -266,7 +266,7 @@ CVE-2025-54877 (Tuleap is an Open Source Suite created to facilitate management
 	NOT-FOR-US: Tuleap
 CVE-2025-54080 (Exiv2 is a C++ library and a command-line utility to read, write, dele ...)
 	[experimental] - exiv2 0.28.7+dfsg-1
-	- exiv2 <unfixed> (bug #1112505)
+	- exiv2 0.28.7+dfsg-2 (bug #1112505)
 	[trixie] - exiv2 <no-dsa> (Minor issue)
 	[bookworm] - exiv2 <no-dsa> (Minor issue)
 	[bullseye] - exiv2 <postponed> (minor issue; out of bound read on write plugin)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1ada4a5c50aafb740ac961efa21ab91c59e73f79

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1ada4a5c50aafb740ac961efa21ab91c59e73f79
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250831/a2dbaa02/attachment-0001.htm>