[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Jul 3 09:12:15 BST 2025



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d3baadd9 by security tracker role at 2025-07-03T08:12:08+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,11 @@
+CVE-2025-5944 (The Element Pack Addons for Elementor plugin for WordPress is vulnerab ...)
+	TODO: check
+CVE-2025-38095 (In the Linux kernel, the following vulnerability has been resolved:  d ...)
+	TODO: check
+CVE-2025-38094 (In the Linux kernel, the following vulnerability has been resolved:  n ...)
+	TODO: check
+CVE-2024-9017 (The PeepSo Core: Groups plugin for WordPress is vulnerable to Stored C ...)
+	TODO: check
 CVE-2025-6943 (Secret Server version 11.7 and earlier is vulnerable to a SQL report c ...)
 	NOT-FOR-US: Secret Server
 CVE-2025-6942 (The distributed engine versions 8.4.39.0 and earlier of Secret Server  ...)
@@ -207731,7 +207739,7 @@ CVE-2023-27586 (CairoSVG is an SVG converter based on Cairo, a 2D graphics libra
 	NOTE: https://github.com/Kozea/CairoSVG/security/advisories/GHSA-rwmf-w63j-p7gv
 	NOTE: Introduced in https://github.com/Kozea/CairoSVG/commit/1ee0889f4015ebaddcf9976d43222e673155797c (0.3)
 CVE-2023-27585 (PJSIP is a free and open source multimedia communication library writt ...)
-	{DSA-5438-1 DLA-3887-1 DLA-3549-1 DLA-3394-1}
+	{DSA-5956-1 DSA-5438-1 DLA-3887-1 DLA-3549-1 DLA-3394-1}
 	- asterisk 1:20.4.0~dfsg+~cs6.13.40431414-1 (bug #1036697)
 	- pjproject <removed>
 	- ring 20230922.0~ds1-1
@@ -724646,7 +724654,7 @@ CVE-2011-5247 (Snare for Linux before 1.7.0 has password disclosure because the
 	NOT-FOR-US: Snare for Linux
 CVE-2009-5133
 	RESERVED
-CVE-2012-6069 (Directory traversal vulnerability in the Runtime Toolkit in CODESYS Ru ...)
+CVE-2012-6069 (The CoDeSys Runtime Toolkit\u2019s file transfer functionality does no ...)
 	NOT-FOR-US: CODESYS Runtime System
 CVE-2012-6068 (The Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x does not ...)
 	NOT-FOR-US: CODESYS Runtime System



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d3baadd9c763be862179c575386ff69051d9eff0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d3baadd9c763be862179c575386ff69051d9eff0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250703/3c426454/attachment.htm>


More information about the debian-security-tracker-commits mailing list