[Git][security-tracker-team/security-tracker][master] Track fixed version for gegl update via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Oct 3 19:19:03 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
867cdd9c by Salvatore Bonaccorso at 2025-10-03T20:18:34+02:00
Track fixed version for gegl update via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2488,7 +2488,7 @@ CVE-2025-10920 [ZDI-CAN-27684: GIMP ICNS File Parsing Out-Of-Bounds Write Remote
NOTE: Introduced after: https://gitlab.gnome.org/GNOME/gimp/-/commit/00232e17875d4676a2c797a429db23b1a9815db8 (GIMP_2_99_14)
NOTE: Fixed by: https://gitlab.gnome.org/GNOME/gimp/-/commit/5f4329d324b0db7a857918941ef7e1d27f3d3992
CVE-2025-10921 [GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability]
- - gegl <unfixed> (bug #1116470)
+ - gegl 1:0.4.62-3.1 (bug #1116470)
NOTE: https://gitlab.gnome.org/GNOME/gegl/-/issues/430
NOTE: Fixed by: https://gitlab.gnome.org/GNOME/gegl/-/commit/0e68b7471dabf2800d780819c19bd5e6462f565f
CVE-2025-9985 (The Featured Image from URL (FIFU) plugin for WordPress is vulnerable ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/867cdd9c16253df63ea652e64e79871bef817298
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/867cdd9c16253df63ea652e64e79871bef817298
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251003/950fd7e1/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list