[Git][security-tracker-team/security-tracker][master] Reserve DLA-4237-1 for xmedcon

Adrian Bunk (@bunk) bunk at debian.org
Sun Jul 6 21:35:59 BST 2025 


Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9b83b709 by Adrian Bunk at 2025-07-06T23:35:44+03:00
Reserve DLA-4237-1 for xmedcon

- - - - -


3 changed files:

- data/CVE/list
- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -34262,7 +34262,6 @@ CVE-2025-2582 (A vulnerability was found in SimpleMachines SMF 2.1.4 and classif
 CVE-2025-2581 (A vulnerability has been found in xmedcon 0.25.0 and classified as pro ...)
 	- xmedcon 0.25.1-gtk3+dfsg-1 (bug #1100986)
 	[bookworm] - xmedcon 0.23.0-gtk3+dfsg-1+deb12u2
-	[bullseye] - xmedcon <postponed> (Minor issue)
 	NOTE: https://xmedcon.sourceforge.io/Main/New
 	NOTE: https://sourceforge.net/p/xmedcon/code/ci/e7a88836fc2277f8ab777f3ef24f917d08415559/
 	NOTE: affects only arches where int64_t != size_t (32 bits arches)


=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[06 Jul 2025] DLA-4237-1 xmedcon - security update
+	{CVE-2025-2581}
+	[bullseye] - xmedcon 0.16.3+dfsg-1+deb11u2
 [30 Jun 2025] DLA-4236-1 mbedtls - security update
 	{CVE-2021-24119 CVE-2021-36647 CVE-2021-43666 CVE-2021-44732 CVE-2022-46392}
 	[bullseye] - mbedtls 2.16.9-0.1+deb11u1


=====================================
data/dla-needed.txt
=====================================
@@ -334,10 +334,6 @@ u-boot (dleidert)
   NOTE: 20250601: WIP, patches for CVE-2021-27097 and CVE-2021-27138 prepped, but test fails (dleidert)
   NOTE: 20250629: WIP, problem fixed; testing required before DLA can be released (dleidert)
 --
-xmedcon (Adrian Bunk)
-  NOTE: 20250617: Added by Front-Desk (lamby)
-  NOTE: 20250617: CVE-2025-2581 was <postponed> for bullseye, but now fixed in bookworm via DSA or point release. (lamby)
---
 xmlrpc-c
   NOTE: 20250411: Added by Front-Desk (Beuc)
   NOTE: 20250411: See issues with old embedded expat library:



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9b83b709448c9c434707dae4dff104c0e3533283

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9b83b709448c9c434707dae4dff104c0e3533283
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250706/6b39cbfd/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list