[Git][security-tracker-team/security-tracker][master] Process some new imagemagick issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Jul 15 06:26:32 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5e9d6065 by Salvatore Bonaccorso at 2025-07-15T07:25:51+02:00
Process some new imagemagick issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -80,13 +80,18 @@ CVE-2025-53639 (MeterSphere is an open source continuous testing platform. Prior
CVE-2025-53623 (The Job Iteration API is an an extension for ActiveJob that make jobs ...)
TODO: check
CVE-2025-53101 (ImageMagick is free and open-source software used for editing and mani ...)
- TODO: check
+ - imagemagick <unfixed>
+ NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-qh3h-j545-h8c9
+ NOTE: https://github.com/ImageMagick/ImageMagick/commit/66dc8f51c11b0ae1f1cdeacd381c3e9a4de69774 (7.1.2-0)
CVE-2025-53019 (ImageMagick is free and open-source software used for editing and mani ...)
- TODO: check
+ - imagemagick <unfixed>
+ NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-cfh4-9f7v-fhrc
CVE-2025-53015 (ImageMagick is free and open-source software used for editing and mani ...)
- TODO: check
+ - imagemagick <unfixed>
+ NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-vmhh-8rxq-fp9g
CVE-2025-53014 (ImageMagick is free and open-source software used for editing and mani ...)
- TODO: check
+ - imagemagick <unfixed>
+ NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-hm4x-r5hc-794f
CVE-2025-52363 (Tenda CP3 Pro Firmware V22.5.4.93 contains a hardcoded root password h ...)
NOT-FOR-US: Tenda
CVE-2025-51660 (SemCms v5.0 was discovered to contain a SQL injection vulnerability vi ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5e9d6065b7d2b3d447d0a3614150d9986fb07f5f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5e9d6065b7d2b3d447d0a3614150d9986fb07f5f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250715/4fc5a333/attachment.htm>
More information about the debian-security-tracker-commits
mailing list