[Git][security-tracker-team/security-tracker][master] Add CVE-2025-64520/glpi
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Dec 17 08:25:26 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
82599dee by Salvatore Bonaccorso at 2025-12-17T09:24:29+01:00
Add CVE-2025-64520/glpi
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3,7 +3,9 @@ CVE-2025-68274 (SIPGO is a library for writing SIP services in the GO language.
CVE-2025-64700 (Cross-site request forgery vulnerability exists in GROWI v7.3.3 and ea ...)
TODO: check
CVE-2025-64520 (GLPI is a free asset and IT management software package. Starting in v ...)
- TODO: check
+ - glpi <removed>
+ NOTE: https://github.com/glpi-project/glpi/security/advisories/GHSA-62p9-prpq-j62q
+ NOTE: https://github.com/glpi-project/glpi/commit/a3d5cc4a63ae592c0b5592ebe6d562164904dab3
CVE-2025-59374 ("UNSUPPORTED WHEN ASSIGNED"Certain versions of the ASUS Live Update cl ...)
NOT-FOR-US: ASUS
CVE-2025-53619 (An out-of-bounds read vulnerability exists in the JPEGBITSCodec::Inter ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/82599dee69c74f36e6efdb3ae8574138b540c48f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/82599dee69c74f36e6efdb3ae8574138b540c48f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251217/05d44a15/attachment.htm>
More information about the debian-security-tracker-commits
mailing list