[Git][security-tracker-team/security-tracker][master] Add CVE-2025-51471/ollama

Wed Jul 23 06:37:04 BST 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
070cc1d0 by Salvatore Bonaccorso at 2025-07-23T07:36:05+02:00
Add CVE-2025-51471/ollama

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -143,7 +143,7 @@ CVE-2025-51475 (Arbitrary File Overwrite (AFO) in superagi.controllers.resources
 CVE-2025-51472 (Code Injection in AgentTemplate.eval_agent_config in TransformerOptimu ...)
 	NOT-FOR-US: TransformerOptimus SuperAGI
 CVE-2025-51471 (Cross-Domain Token Exposure in server.auth.getAuthorizationToken in Ol ...)
-	TODO: check
+	- ollama <itp> (bug #1094806)
 CVE-2025-51464 (Cross-site Scripting (XSS) in aimhubio Aim 3.28.0 allows remote attack ...)
 	NOT-FOR-US: aimhubio Aim
 CVE-2025-51463 (Path Traversal in restore_run_backup() in AIM 3.28.0 allows remote att ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/070cc1d03fc218222a18aa7c2e4636b0857edb88

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/070cc1d03fc218222a18aa7c2e4636b0857edb88
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250723/43924f70/attachment.htm>
