[Git][security-tracker-team/security-tracker][master] Update status for CVE-2025-2509/virglrenderer
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon May 19 20:05:25 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
70a836e0 by Salvatore Bonaccorso at 2025-05-19T21:04:54+02:00
Update status for CVE-2025-2509/virglrenderer
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -4588,8 +4588,7 @@ CVE-2025-3020 (An low privileged remote Attacker can execute arbitrary web scrip
CVE-2025-2802 (The LayoutBoxx plugin for WordPress is vulnerable to arbitrary shortco ...)
NOT-FOR-US: WordPress plugin
CVE-2025-2509 (Out-of-Bounds Read in Virglrenderer in ChromeOS 16093.57.0 allows a m ...)
- - virglrenderer <unfixed> (bug #1104934)
- [bullseye] - virglrenderer <not-affected> (Vulnerable code introduced later)
+ - virglrenderer <not-affected> (Vulnerable code not in any Debian released version, cf bug #1104934)
NOTE: https://issuetracker.google.com/issues/385851796
NOTE: Introduced by: https://gitlab.freedesktop.org/virgl/virglrenderer/-/commit/d80b2a19d3c806fa4e4a3e163d7d7cd473f9ffe4 (1.1.1)
NOTE: Fixed by: https://gitlab.freedesktop.org/virgl/virglrenderer/-/commit/642c97ba47658bc9b51c4df1e30ea90103df077b (1.1.1)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/70a836e0d0010e7c928d77d8775b547ff25c09d2
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/70a836e0d0010e7c928d77d8775b547ff25c09d2
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250519/7b9f7c05/attachment.htm>
More information about the debian-security-tracker-commits
mailing list