[Git][security-tracker-team/security-tracker][master] Reference proposed patch for CVE-2025-46394
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed May 7 07:19:23 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
6541526b by Salvatore Bonaccorso at 2025-05-07T08:18:32+02:00
Reference proposed patch for CVE-2025-46394
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -4048,6 +4048,7 @@ CVE-2025-46394 (In tar in BusyBox through 1.37.0, a TAR archive can have filenam
[bookworm] - busybox <no-dsa> (Minor issue)
NOTE: https://bugs.busybox.net/show_bug.cgi?id=16018
NOTE: https://www.openwall.com/lists/oss-security/2025/04/23/1
+ NOTE: Proposed patch: https://lists.busybox.net/pipermail/busybox/2025-April/091461.html
CVE-2025-46393 (In multispectral MIFF image processing in ImageMagick before 7.1.1-44, ...)
- imagemagick 8:7.1.1.46+dfsg1-1
[bookworm] - imagemagick <not-affected> (Vulnerable code introduced later)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6541526b31b6c2181c1fb1c3b04899bf3b488d1c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6541526b31b6c2181c1fb1c3b04899bf3b488d1c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250507/e107c53e/attachment.htm>
More information about the debian-security-tracker-commits
mailing list