[Git][security-tracker-team/security-tracker][master] Add CVE-2025-6196/libgepub
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Jun 17 21:43:28 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
6ad721ee by Salvatore Bonaccorso at 2025-06-17T22:43:09+02:00
Add CVE-2025-6196/libgepub
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5,7 +5,9 @@ CVE-2025-6199 (A flaw was found in the GIF parser of GdkPixbuf\u2019s LZW decode
NOTE: https://gitlab.gnome.org/GNOME/gdk-pixbuf/-/merge_requests/191
NOTE: Fixed by: https://gitlab.gnome.org/GNOME/gdk-pixbuf/-/commit/c4986342b241cdc075259565f3fa7a7597d32a32 (2.43.2)
CVE-2025-6196 (A flaw was found in libgepub, a library used to read EPUB files. The s ...)
- TODO: check
+ - libgepub 0.7.3-1
+ NOTE: https://gitlab.gnome.org/GNOME/libgepub/-/issues/18
+ NOTE: Fixed by: https://gitlab.gnome.org/GNOME/libgepub/-/commit/70895c45364ef4ee827b39b2ed1c33723410e94c (0.7.2)
CVE-2025-6069 (The html.parser.HTMLParser class had worse-case quadratic complexity w ...)
TODO: check
CVE-2025-6050 (Mezzanine CMS, in versions prior to 6.1.1, contains a Stored Cross-Sit ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6ad721eedef903b59266e857ef1e7f5f7e1ad11b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6ad721eedef903b59266e857ef1e7f5f7e1ad11b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250617/ee1d205f/attachment.htm>
More information about the debian-security-tracker-commits
mailing list