[Git][security-tracker-team/security-tracker][master] trixie/bookworm triage

Moritz Muehlenhoff (@jmm) jmm at debian.org
Tue Dec 23 21:45:38 GMT 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
bf4ba414 by Moritz Muehlenhoff at 2025-12-23T22:45:26+01:00
trixie/bookworm triage

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -641,15 +641,17 @@ CVE-2025-14959 (A weakness has been identified in code-projects Simple Stock Sys
 CVE-2025-14958 (A security flaw has been discovered in floooh sokol up to 33e2271c431b ...)
 	NOT-FOR-US: floooh sokol
 CVE-2025-14957 (A vulnerability was identified in WebAssembly Binaryen up to 125. This ...)
-	- binaryen <unfixed> (bug #1123746)
+	- binaryen <unfixed> (bug #1123746; unimportant)
 	NOTE: https://github.com/WebAssembly/binaryen/issues/8090
 	NOTE: https://github.com/WebAssembly/binaryen/pull/8099
 	NOTE: Fixed by: https://github.com/WebAssembly/binaryen/commit/6fb2b917a79578ab44cf3b900a6da4c27251e0d4
+	NOTE: Crash in CLI tool, no security impact
 CVE-2025-14956 (A vulnerability was determined in WebAssembly Binaryen up to 125. Affe ...)
-	- binaryen <unfixed> (bug #1123745)
+	- binaryen <unfixed> (bug #1123745; unimportant)
 	NOTE: https://github.com/WebAssembly/binaryen/issues/8089
 	NOTE: https://github.com/WebAssembly/binaryen/pull/8092
 	NOTE: Fixed by: https://github.com/WebAssembly/binaryen/commit/4f52bff8c4075b5630422f902dd92a0af2c9f398
+	NOTE: Crash in CLI tool, no security impact
 CVE-2025-14955 (A vulnerability was found in Open5GS up to 2.7.5. Affected by this vul ...)
 	- open5gs <itp> (bug #1094791)
 CVE-2025-14954 (A vulnerability has been found in Open5GS up to 2.7.5. Affected is the ...)
@@ -353806,8 +353808,8 @@ CVE-2022-0684 (The WP Home Page Menu WordPress plugin before 3.1 does not saniti
 	NOT-FOR-US: WordPress plugin
 CVE-2021-46700 (In libsixel 1.8.6, sixel_encoder_output_without_macro (called from six ...)
 	- libsixel <unfixed> (bug #1014469)
-	[trixie] - libsixel <no-dsa> (Minor issue)
-	[bookworm] - libsixel <no-dsa> (Minor issue)
+	[trixie] - libsixel <postponed> (Minor issue, revisit when fixed upstream)
+	[bookworm] - libsixel <no-dsa> (Minor issue, revisit when fixed upstream)
 	[bullseye] - libsixel <no-dsa> (Minor issue)
 	[buster] - libsixel <no-dsa> (Minor issue)
 	[stretch] - libsixel <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bf4ba414ad7b896de725bbdd7f3fbb5d6fffffab

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bf4ba414ad7b896de725bbdd7f3fbb5d6fffffab
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251223/f6ab89e5/attachment.htm>

More information about the debian-security-tracker-commits mailing list