[Git][security-tracker-team/security-tracker][master] icinga2: bullseye postponed
Sylvain Beucler (@beuc)
gitlab at salsa.debian.org
Sat Nov 8 12:21:41 GMT 2025
Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker
Commits:
57b3513d by Sylvain Beucler at 2025-11-08T13:19:09+01:00
icinga2: bullseye postponed
Replicate triage from https://salsa.debian.org/freexian-team/extended-lts/security-tracker/-/commit/c2ac830c04f94102e156a222bcd52951494f1135
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6687,12 +6687,14 @@ CVE-2025-61922 (PrestaShop Checkout is the PrestaShop official payment module in
NOT-FOR-US: PrestaShop
CVE-2025-61909 (Icinga 2 is an open source monitoring system. From 2.10.0 to before 2. ...)
- icinga2 2.15.1-1
+ [bullseye] - icinga2 <postponed> (Minor issue, requires a compromised icinga/nagios system user)
NOTE: https://github.com/Icinga/icinga2/security/advisories/GHSA-pg6g-g99v-mw46
NOTE: https://github.com/Icinga/icinga2/issues/10527
NOTE: https://github.com/Icinga/icinga2/commit/51ec73cbd922a76fc0f60e1d8d33acd7caa5d587
NOTE: https://icinga.com/blog/releasing-icinga-2-v2-15-1-2-14-7-and-2-13-13-and-icinga-db-web-v1-2-3-and-1-1-4/
CVE-2025-61908 (Icinga 2 is an open source monitoring system. From 2.10.0 to before 2. ...)
- icinga2 2.15.1-1
+ [bullseye] - icinga2 <postponed> (Minor issue, only exploitable by already authenticated users)
NOTE: https://github.com/Icinga/icinga2/security/advisories/GHSA-v9jg-xqhj-f43g
NOTE: https://github.com/Icinga/icinga2/commit/0dadce2b972f1d8d9f9b11f3a4eb9604b79cacb2 (v2.15.1)
NOTE: https://github.com/Icinga/icinga2/commit/0d737e263a2244be07da85e5c5d6d914888255d4 (v2.14.7)
@@ -6700,6 +6702,7 @@ CVE-2025-61908 (Icinga 2 is an open source monitoring system. From 2.10.0 to bef
NOTE: https://icinga.com/blog/releasing-icinga-2-v2-15-1-2-14-7-and-2-13-13-and-icinga-db-web-v1-2-3-and-1-1-4/
CVE-2025-61907 (Icinga 2 is an open source monitoring system. In Icinga 2 versions 2.4 ...)
- icinga2 2.15.1-1
+ [bullseye] - icinga2 <postponed> (Minor issue, only exploitable by already authenticated users)
NOTE: https://github.com/Icinga/icinga2/security/advisories/GHSA-gg32-w9rm-vp2v
NOTE: https://icinga.com/blog/releasing-icinga-2-v2-15-1-2-14-7-and-2-13-13-and-icinga-db-web-v1-2-3-and-1-1-4/
CVE-2025-61789 (Icinga DB Web provides a graphical interface for Icinga monitoring. Be ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/57b3513d9ee086c751ea01403bb7fa21caa220c1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/57b3513d9ee086c751ea01403bb7fa21caa220c1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251108/8a25a50c/attachment.htm>
More information about the debian-security-tracker-commits
mailing list