[Git][security-tracker-team/security-tracker][master] Add new libarchive issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Jun 9 21:26:44 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d5c238a7 by Salvatore Bonaccorso at 2025-06-09T22:26:18+02:00
Add new libarchive issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,13 +1,23 @@
 CVE-2025-5918 (A vulnerability has been identified in the libarchive library. This fl ...)
-	TODO: check
+	- libarchive <unfixed>
+	NOTE: https://github.com/libarchive/libarchive/pull/2584
+	NOTE: Fixed by; https://github.com/libarchive/libarchive/commit/dcbf1e0ededa95849f098d154a25876ed5754bcf (v3.8.0)
 CVE-2025-5917 (A vulnerability has been identified in the libarchive library. This fl ...)
-	TODO: check
+	- libarchive <unfixed>
+	NOTE: https://github.com/libarchive/libarchive/pull/2588
+	NOTE: Fixed by: https://github.com/libarchive/libarchive/commit/7c02cde37a63580cd1859183fbbd2cf04a89be85 (v3.8.0)
 CVE-2025-5916 (A vulnerability has been identified in the libarchive library. This fl ...)
-	TODO: check
+	- libarchive <unfixed>
+	NOTE: https://github.com/libarchive/libarchive/pull/2568
+	NOTE: Fixed by: https://github.com/libarchive/libarchive/commit/ef093729521fcf73fa4007d5ae77adfe4df42403 (v3.8.0)
 CVE-2025-5915 (A vulnerability has been identified in the libarchive library. This fl ...)
-	TODO: check
+	- libarchive <unfixed>
+	NOTE: https://github.com/libarchive/libarchive/pull/2599
+	NOTE: Fixed by: https://github.com/libarchive/libarchive/commit/a612bf62f86a6faa47bd57c52b94849f0a404d8c (v3.8.0)
 CVE-2025-5914 (A vulnerability has been identified in the libarchive library, specifi ...)
-	TODO: check
+	- libarchive <unfixed>
+	NOTE: https://github.com/libarchive/libarchive/pull/2598
+	NOTE: Fixed by: https://github.com/libarchive/libarchive/commit/09685126fcec664e2b8ca595e1fc371bd494d209 (v3.8.0)
 CVE-2025-5895 (A vulnerability was found in Metabase 54.10. It has been classified as ...)
 	TODO: check
 CVE-2025-5892 (A vulnerability, which was classified as problematic, has been found i ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d5c238a7518f764a0dcfeff7fa59a8690460fbff

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d5c238a7518f764a0dcfeff7fa59a8690460fbff
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250609/32af4d1a/attachment.htm>

More information about the debian-security-tracker-commits mailing list