[Git][security-tracker-team/security-tracker][master] CVE-2025-12638/keras bullseye
Bastien Roucariès (@rouca)
rouca at debian.org
Sat Nov 29 09:38:32 GMT 2025
Bastien Roucariès pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f03bb355 by Bastien Roucariès at 2025-11-29T10:38:14+01:00
CVE-2025-12638/keras bullseye
Minor issue.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -64,6 +64,7 @@ CVE-2025-13683 (Exposure of credentials in unintended requests in Devolutions Se
NOT-FOR-US: Devolutions
CVE-2025-12638 (Keras version 3.11.3 is affected by a path traversal vulnerability in ...)
- keras <removed>
+ [bullseye] - keras <postponed> (minor issue)
NOTE: https://huntr.com/bounties/f94f5beb-54d8-4e6a-8bac-86d9aee103f4
NOTE: Fixed by: https://github.com/keras-team/keras/commit/47fcb397ee4caffd5a75efd1fa3067559594e951 (v3.12.0)
CVE-2025-12183 (Out-of-bounds memory operations in org.lz4:lz4-java 1.8.0 and earlier ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f03bb3550bdd3eea8296045ae07547ebcf7cf5ca
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f03bb3550bdd3eea8296045ae07547ebcf7cf5ca
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251129/7ac42325/attachment.htm>
More information about the debian-security-tracker-commits
mailing list