[Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2025-66040
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Dec 26 06:50:55 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ff1b0736 by Salvatore Bonaccorso at 2025-12-26T07:49:49+01:00
Track fixed version via unstable for CVE-2025-66040
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -12445,7 +12445,7 @@ CVE-2025-7820 (The SKT PayPal for WooCommerce plugin for WordPress is vulnerable
CVE-2025-66314 (Improper Privilege Management vulnerability in ZTE ElasticNet UME R32 ...)
NOT-FOR-US: ZTE
CVE-2025-66040 (Spotipy is a Python library for the Spotify Web API. Prior to version ...)
- - spotipy <unfixed> (bug #1121540)
+ - spotipy 2.25.2-1 (bug #1121540)
[trixie] - spotipy <no-dsa> (Minor issue)
NOTE: https://github.com/spotipy-dev/spotipy/security/advisories/GHSA-r77h-rpp9-w2xm
NOTE: https://github.com/spotipy-dev/spotipy/commit/880b92d7243dcf2b83bf31dc365a858d8b5e6767 (2.25.2)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ff1b0736472349bcff0d891105e76f2a75d1819d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ff1b0736472349bcff0d891105e76f2a75d1819d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251226/54f3a092/attachment.htm>
More information about the debian-security-tracker-commits
mailing list