[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2025-5222/icu via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat May 31 08:31:15 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0536cbd0 by Salvatore Bonaccorso at 2025-05-31T09:30:24+02:00
Track fixed version for CVE-2025-5222/icu via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -967,7 +967,7 @@ CVE-2024-38866 (Improper neutralization of input in Nagvis before version 1.9.47
- nagvis 1:1.9.47-1 (bug #1106686)
NOTE: https://github.com/NagVis/nagvis/commit/6493722cf52436dbafb2b9f1c20c3ab8b663ad0f (nagvis-1.9.47)
CVE-2025-5222 (A stack buffer overflow was found in Internationl components for unico ...)
- - icu <unfixed> (bug #1106684)
+ - icu 76.1-4 (bug #1106684)
NOTE: https://unicode-org.atlassian.net/browse/ICU-22957
NOTE: Fixed by: https://github.com/unicode-org/icu/commit/2c667e31cfd0b6bb1923627a932fd3453a5bac77 (release-77-rc)
CVE-2025-48796 (A flaw was found in GIMP. The GIMP ani_load_image() function is vulner ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0536cbd0cd80f72b68846aefadec38be2daf4018
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0536cbd0cd80f72b68846aefadec38be2daf4018
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250531/0804a145/attachment.htm>
More information about the debian-security-tracker-commits
mailing list