[Git][security-tracker-team/security-tracker][master] Add three new robocode issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Dec 9 20:10:00 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
41aa5b7d by Salvatore Bonaccorso at 2025-12-09T21:09:35+01:00
Add three new robocode issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -154,11 +154,20 @@ CVE-2025-14310 (Buffer Copy without Checking Size of Input ('Classic Buffer Over
 CVE-2025-14309 (NULL Pointer Dereference vulnerability in ravynsoft ravynos.This issue ...)
 	NOT-FOR-US: ravynos
 CVE-2025-14308 (An integer overflow vulnerability exists in the write method of the Bu ...)
-	TODO: check
+	- robocode <unfixed>
+	NOTE: https://github.com/robo-code/robocode/pull/70
+	NOTE: Fixed by: https://github.com/robo-code/robocode/commit/5ca52e3af7e35cd0a7309d573595dcb78cce7fa7 (VER_1_9_5_6)
+	NOTE: Fixed by: https://github.com/robo-code/robocode/commit/9f616173e5ed3b7b6c02c2b230b1014822bee363 (VER_1_9_5_6)
+	NOTE: Fixed by: https://github.com/robo-code/robocode/commit/9787e2cc90942d94ae341cf5562e42495443084b (VER_1_9_5_6)
 CVE-2025-14307 (An insecure temporary file creation vulnerability exists in the AutoEx ...)
-	TODO: check
+	- robocode <unfixed>
+	NOTE: https://github.com/robo-code/robocode/pull/68
+	NOTE: Fixed by: https://github.com/robo-code/robocode/commit/964b10f74064d04a3ea05a52b74ed86f485a13d5 (VER_1_9_5_6)
+	NOTE: Fixed by: https://github.com/robo-code/robocode/commit/1638298ac872d7a92daf02de758f35f8012eae96 (VER_1_9_5_6)
 CVE-2025-14306 (A directory traversal vulnerability exists in the CacheCleaner compone ...)
-	TODO: check
+	- robocode <unfixed>
+	NOTE: https://github.com/robo-code/robocode/pull/67
+	NOTE: Fixed by: https://github.com/robo-code/robocode/commit/26b6ba8ed5b2a11a646ce2d5da8d42cd53574b1f (VER_1_9_5_6)
 CVE-2025-14286 (A vulnerability was determined in Tenda AC9 15.03.05.14_multi. Affecte ...)
 	NOT-FOR-US: Tenda
 CVE-2025-14285 (A vulnerability was found in code-projects Employee Profile Management ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/41aa5b7d375daa50ccb9d05edb3e8bce67018ee6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/41aa5b7d375daa50ccb9d05edb3e8bce67018ee6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251209/54594de3/attachment.htm>

More information about the debian-security-tracker-commits mailing list