[Git][security-tracker-team/security-tracker][master] add references for coreutils and yelp

Moritz Muehlenhoff (@jmm) jmm at debian.org
Wed May 28 16:35:30 BST 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7f7cf72d by Moritz Muehlenhoff at 2025-05-28T17:35:12+02:00
add references for coreutils and yelp

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -86,6 +86,8 @@ CVE-2025-5278 (A flaw was found in GNU Coreutils. The sort utility's begfield()
 	NOTE: https://lists.gnu.org/archive/html/bug-coreutils/2025-05/msg00036.html
 	NOTE: https://lists.gnu.org/archive/html/bug-coreutils/2025-05/msg00040.html
 	NOTE: https://cgit.git.savannah.gnu.org/cgit/coreutils.git/commit/?id=8c9602e3a145e9596dc1a63c6ed67865814b6633
+	NOTE: https://www.openwall.com/lists/oss-security/2025/05/27/2
+	NOTE: https://debbugs.gnu.org/cgi/bugreport.cgi?bug=78507
 CVE-2025-5067 (Inappropriate implementation in Tab Strip in Google Chrome prior to 13 ...)
 	- chromium 137.0.7151.55-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
@@ -17382,6 +17384,8 @@ CVE-2025-3155 (A flaw was found in Yelp. The Gnome user help application allows
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2357091
 	NOTE: https://www.openwall.com/lists/oss-security/2025/04/04/1
 	NOTE: https://gitlab.gnome.org/GNOME/yelp/-/issues/221
+	NOTE: https://blogs.gnome.org/mcatanzaro/2025/04/15/dangerous-arbitrary-file-read-vulnerability-in-yelp-cve-2025-3155/
+	NOTE: https://gist.github.com/parrot409/e970b155358d45b298d7024edd9b17f2
 CVE-2025-32054 (In JetBrains IntelliJ IDEA before 2024.3, 2024.2.4 source code could b ...)
 	- intellij-idea <itp> (bug #747616)
 CVE-2025-32052 (A flaw was found in libsoup. A vulnerability in the sniff_unknown() fu ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7f7cf72d61c564babbb57dab63a0e2f22a3a6b07

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7f7cf72d61c564babbb57dab63a0e2f22a3a6b07
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250528/c6d5876a/attachment.htm>

More information about the debian-security-tracker-commits mailing list