[Git][security-tracker-team/security-tracker][master] Track fixed version for libsoup2.4 issues via unstable
Andreas Henriksson (@ah)
gitlab at salsa.debian.org
Tue Dec 9 14:59:37 GMT 2025
Andreas Henriksson pushed to branch master at Debian Security Tracker / security-tracker
Commits:
446371d6 by Andreas Henriksson at 2025-12-09T15:59:26+01:00
Track fixed version for libsoup2.4 issues via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -64599,7 +64599,7 @@ CVE-2025-4998 (A vulnerability has been found in H3C Magic R200G up to 100R002 a
CVE-2025-4969 (A vulnerability was found in the libsoup package. This flaw stems from ...)
- libsoup3 3.6.5-2 (bug #1106248)
[bookworm] - libsoup3 <no-dsa> (Minor issue)
- - libsoup2.4 <unfixed> (bug #1106325)
+ - libsoup2.4 2.74.3-11 (bug #1106325)
[trixie] - libsoup2.4 <no-dsa> (Minor issue)
[bookworm] - libsoup2.4 <no-dsa> (Minor issue)
NOTE: https://gitlab.gnome.org/GNOME/libsoup/-/issues/447
@@ -65245,7 +65245,7 @@ CVE-2024-5878 (Multiple plugins for WordPress are vulnerable to Stored Cross-Sit
CVE-2025-4948 (A flaw was found in the soup_multipart_new_from_message() function of ...)
- libsoup3 3.6.5-2 (bug #1106204)
[bookworm] - libsoup3 <no-dsa> (Minor issue)
- - libsoup2.4 <unfixed> (bug #1106337)
+ - libsoup2.4 2.74.3-11 (bug #1106337)
[trixie] - libsoup2.4 <no-dsa> (Minor issue)
[bookworm] - libsoup2.4 <no-dsa> (Minor issue)
NOTE: https://gitlab.gnome.org/GNOME/libsoup/-/issues/449
@@ -65253,7 +65253,7 @@ CVE-2025-4948 (A flaw was found in the soup_multipart_new_from_message() functio
CVE-2025-4945 (A flaw was found in the cookie parsing logic of the libsoup HTTP libra ...)
- libsoup3 3.6.5-2 (bug #1106205)
[bookworm] - libsoup3 <no-dsa> (Minor issue)
- - libsoup2.4 <unfixed> (bug #1106375)
+ - libsoup2.4 2.74.3-11 (bug #1106375)
[trixie] - libsoup2.4 <no-dsa> (Minor issue)
[bookworm] - libsoup2.4 <no-dsa> (Minor issue)
NOTE: https://gitlab.gnome.org/GNOME/libsoup/-/issues/448
@@ -66833,7 +66833,7 @@ CVE-2023-2334 (The edd-google-sheet-connector-pro WordPress plugin before 1.4, E
CVE-2025-4476 (A denial-of-service vulnerability has been identified in the libsoup H ...)
- libsoup3 3.6.5-2 (bug #1105887)
[bookworm] - libsoup3 <no-dsa> (Minor issue)
- - libsoup2.4 <unfixed> (bug #1107757)
+ - libsoup2.4 2.74.3-11 (bug #1107757)
[trixie] - libsoup2.4 <no-dsa> (Minor issue)
[bookworm] - libsoup2.4 <no-dsa> (Minor issue)
NOTE: https://gitlab.gnome.org/GNOME/libsoup/-/issues/440
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/446371d6c60a99a7b59dcb6c2bc76df84b666a73
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/446371d6c60a99a7b59dcb6c2bc76df84b666a73
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251209/9b3bd591/attachment.htm>
More information about the debian-security-tracker-commits
mailing list