[Git][security-tracker-team/security-tracker][master] dla: drop epiphany-browser

Sylvain Beucler (@beuc) gitlab at salsa.debian.org
Sat Nov 8 12:34:34 GMT 2025 


Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
705c5724 by Sylvain Beucler at 2025-11-08T13:33:22+01:00
dla: drop epiphany-browser

Follow bookworm triage.
webkit2gtk supported and updated so not considering ignored/end-of-life as suggested

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -65399,6 +65399,7 @@ CVE-2024-58250 (The passprompt plugin in pppd in ppp before 2.5.2 mishandles pri
 CVE-2025-3839 [Require user interaction before opening URL in external application]
 	- epiphany-browser 48.1-1
 	[bookworm] - epiphany-browser <no-dsa> (Minor issue)
+	[bullseye] - epiphany-browser <postponed> (Minor issue)
 	NOTE: https://gitlab.gnome.org/GNOME/epiphany/-/issues/2641
 	NOTE: Fixed by: https://gitlab.gnome.org/GNOME/epiphany/-/commit/324e25caee659bce43ff5c614d105f64899dfb7f (48.1)
 	NOTE: Fixed by: https://gitlab.gnome.org/GNOME/epiphany/-/commit/9f80e7e80b75212627790d74041d46eedb6e321e (47.5)


=====================================
data/dla-needed.txt
=====================================
@@ -67,11 +67,6 @@ dnsdist (rouca)
 docker.io
   NOTE: 20250805: Added by Front-Desk (rouca)
 --
-epiphany-browser
-  NOTE: 20250429: Added by Front-Desk (lamby)
-  NOTE: 20250429: Changes the UI to prompt when opening URLs in external applications. (lamby)
-  NOTE: 20250606: mark as ignored/end-of-life if webkit2gtk doesn't get updated (pochu)
---
 erlang
   NOTE: 20250710: Added by Front-Desk (apo)
   NOTE: 20250719: SPU in progress https://bugs.debian.org/1105009 (Beuc/front-desk)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/705c57249040f63956b8ececf266f786b9dac4bc

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/705c57249040f63956b8ececf266f786b9dac4bc
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251108/55015bf0/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list