[Git][security-tracker-team/security-tracker][master] Update status for CVE-2025-53630

Tue Jul 15 13:59:52 BST 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
35e338d8 by Salvatore Bonaccorso at 2025-07-15T14:59:21+02:00
Update status for CVE-2025-53630

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -840,9 +840,10 @@ CVE-2025-53632 (Chall-Manager is a platform-agnostic system able to start Challe
 	NOT-FOR-US: Chall-Manager
 CVE-2025-53630 (llama.cpp is an inference of several LLM models in C/C++. Integer Over ...)
 	- ggml 0.0~git20250711.b6d2ebd-1 (bug #1109124)
-	- llama.cpp 5882+dfsg-1
+	- llama.cpp 5882+dfsg-1 (unimportant)
 	NOTE: https://github.com/ggml-org/llama.cpp/security/advisories/GHSA-vgg9-87g3-85w8
 	NOTE: Fixed by: https://github.com/ggml-org/llama.cpp/commit/26a48ad699d50b6268900062661bd22f3e792579 (b5854)
+	NOTE: llama.cpp builts embedded ggml but does not use it, rather Debian uses standalone src:ggml
 CVE-2025-53629 (cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTT ...)
 	- cpp-httplib <unfixed> (bug #1109340)
 	NOTE: https://github.com/yhirose/cpp-httplib/security/advisories/GHSA-qjmq-h3cc-qv6w



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/35e338d8017bd8f046dfaa5d75cbce92f6933327

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/35e338d8017bd8f046dfaa5d75cbce92f6933327
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250715/7ed91a10/attachment-0001.htm>
