[Git][security-tracker-team/security-tracker][master] bookworm triage

Moritz Muehlenhoff (@jmm) jmm at debian.org
Sat Mar 15 11:55:43 GMT 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
60e06dd6 by Moritz Muehlenhoff at 2025-03-15T12:55:12+01:00
bookworm triage

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -301,6 +301,7 @@ CVE-2025-29773 (Froxlor is open-source server administration software. A vulnera
 	- froxlor <itp> (bug #581792)
 CVE-2025-29768 (Vim, a text editor, is vulnerable to potential data loss with zip.vim  ...)
 	- vim <unfixed>
+	[bookworm] - vim <no-dsa> (Minor issue)
 	NOTE: https://github.com/vim/vim/security/advisories/GHSA-693p-m996-3rmf
 	NOTE: https://github.com/vim/vim/commit/f209dcd3defb95bae21b2740910e6aa7bb940531 (v9.1.1198)
 CVE-2025-29363 (Tenda RX3 US_RX3V1.0br_V16.03.13.11_multi_TDE01 is vulnerable to buffe ...)
@@ -2718,6 +2719,7 @@ CVE-2025-22870 (Matching of hosts against proxy patterns can improperly treat an
 	- golang-1.24 1.24.1-1
 	- golang-1.23 1.23.7-1
 	- golang-1.19 <removed>
+	[bookworm] - golang-1.19 <no-dsa> (Minor issue)
 	- golang-1.15 <removed>
 	NOTE: https://groups.google.com/g/golang-announce/c/4t3lzH3I0eI/m/b42ImqrBAQAJ
 	NOTE: https://github.com/golang/go/issues/71984


=====================================
data/dsa-needed.txt
=====================================
@@ -53,6 +53,8 @@ php-laravel-framework
 python-django
   Chris is working on it
 --
+rails (jmm)
+--
 ring
 --
 rsync (carnil)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/60e06dd64692944c4d0ec82b905b38dab748bfde

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/60e06dd64692944c4d0ec82b905b38dab748bfde
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250315/741100ab/attachment.htm>

More information about the debian-security-tracker-commits mailing list