[Git][security-tracker-team/security-tracker][master] Add additional upstream references for CVE-2025-53689
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Jul 15 21:03:00 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8c6bac37 by Salvatore Bonaccorso at 2025-07-15T22:02:18+02:00
Add additional upstream references for CVE-2025-53689
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -140,6 +140,8 @@ CVE-2025-7519 (A flaw was found in polkit. When processing an XML policy with 32
CVE-2025-53689 (Blind XXE Vulnerabilities in jackrabbit-spi-commons and jackrabbit-cor ...)
- jackrabbit <unfixed> (bug #1109335)
NOTE: https://lists.apache.org/thread/5pf9n76ny13pzzk765og2h3gxdxw7p24
+ NOTE: https://issues.apache.org/jira/browse/JCR-5165
+ NOTE: https://github.com/apache/jackrabbit/pull/263
NOTE: https://github.com/apache/jackrabbit/commit/1d6cb3d0fcc8d51980b90ddcf94122d3e4add83e (jackrabbit-2.20.17)
CVE-2025-53639 (MeterSphere is an open source continuous testing platform. Prior to ve ...)
NOT-FOR-US: MeterSphere
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8c6bac37a7a74f9bee2c9f739bfe0b7d5727f1c9
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8c6bac37a7a74f9bee2c9f739bfe0b7d5727f1c9
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250715/fb691b52/attachment.htm>
More information about the debian-security-tracker-commits
mailing list