[Git][security-tracker-team/security-tracker][master] Update status for CVE-2025-53076/rlottie
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Jul 1 20:53:38 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c724917f by Salvatore Bonaccorso at 2025-07-01T21:53:08+02:00
Update status for CVE-2025-53076/rlottie
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -225,9 +225,10 @@ CVE-2025-6871 (A vulnerability classified as critical has been found in SourceCo
CVE-2025-5730 (The Contact Form Plugin WordPress plugin before 1.1.29 does not saniti ...)
NOT-FOR-US: WordPress plugin
CVE-2025-53076 (Improper Input Validation vulnerability in Samsung Open Source rLottie ...)
- - rlottie <unfixed>
+ - rlottie <not-affected> (Vulnerable code introduced later)
NOTE: https://github.com/Samsung/rlottie/pull/573
- NOTE: https://github.com/Samsung/rlottie/commit/36ddb42d78d1b13c1b1d7e1699aef8a9f339ab6f
+ NOTE: Introduces with: https://github.com/Samsung/rlottie/commit/ee18d81c463df64052de3680366971cfdb179f4a
+ NOTE: Fxied by: https://github.com/Samsung/rlottie/commit/36ddb42d78d1b13c1b1d7e1699aef8a9f339ab6f
CVE-2025-53075 (Improper Input Validation vulnerability in Samsung Open Source rLottie ...)
- rlottie <unfixed>
NOTE: https://github.com/Samsung/rlottie/pull/571
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c724917f5801323b33c9a90776f19b97077f92ad
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c724917f5801323b33c9a90776f19b97077f92ad
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250701/e4384a5d/attachment.htm>
More information about the debian-security-tracker-commits
mailing list