[Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2025-2912/hdf5
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Nov 17 17:09:51 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9859cd64 by Salvatore Bonaccorso at 2025-11-17T18:09:07+01:00
Reference upstream commit for CVE-2025-2912/hdf5
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -77059,6 +77059,7 @@ CVE-2025-2912 (A vulnerability was found in HDF5 up to 1.14.6. It has been decla
[bookworm] - hdf5 <postponed> (Minor issue, revisit when fixed upstream)
[bullseye] - hdf5 <postponed> (Minor issue, revisit when fixed upstream)
NOTE: https://github.com/HDFGroup/hdf5/issues/5370
+ NOTE: Fixed by: https://github.com/HDFGroup/hdf5/commit/7cc8b5e1010a09c892bc97ac32d9515c3777ce07 (2.0.0)
CVE-2025-2911 (Unauthorised access to the call forwarding service system in MeetMe pr ...)
NOT-FOR-US: MeetMe
CVE-2025-2910 (User enumeration in the password reset module of the MeetMe authentica ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9859cd6481bdaf92b9a07d27dca42a5b755a10be
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9859cd6481bdaf92b9a07d27dca42a5b755a10be
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251117/b1dc508b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list