[Git][security-tracker-team/security-tracker][master] Add CVE-2025-61789/icingadb-web

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Oct 16 21:35:55 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a85697b3 by Salvatore Bonaccorso at 2025-10-16T22:35:19+02:00
Add CVE-2025-61789/icingadb-web

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -66,7 +66,14 @@ CVE-2025-61908 (Icinga 2 is an open source monitoring system. From 2.10.0 to bef
 CVE-2025-61907 (Icinga 2 is an open source monitoring system. In Icinga 2 versions 2.4 ...)
 	TODO: check
 CVE-2025-61789 (Icinga DB Web provides a graphical interface for Icinga monitoring. Be ...)
-	TODO: check
+	- icingadb-web 1.2.3-1
+	NOTE: https://github.com/Icinga/icingadb-web/security/advisories/GHSA-w57j-28jc-8429
+	NOTE: Fixed by: https://github.com/Icinga/icingadb-web/commit/5e982dad40ec379075307ab1693580138e675b18 (v1.2.3)
+	NOTE: Fixed by: https://github.com/Icinga/icingadb-web/commit/79fc07e7ee4c3d43981487753e82d1f22e956dce (v1.1.4)
+	NOTE: Fixed by: https://github.com/Icinga/icingadb-web/commit/3b13f094422bc2faded38e4195559a22a172d0ed (v1.1.4)
+	NOTE: Fixed by: https://github.com/Icinga/icingadb-web/commit/fa4191363b83c8d3e7d854f623ad74b28ae08d7c (v1.1.4)
+	NOTE: Fixed by: https://github.com/Icinga/icingadb-web/commit/489c8c457c8585e66d2cb502e30dbd8cb5c19e57 (v1.1.4)
+	NOTE: https://icinga.com/blog/releasing-icinga-2-v2-15-1-2-14-7-and-2-13-13-and-icinga-db-web-v1-2-3-and-1-1-4/
 CVE-2025-61581 (** UNSUPPORTED WHEN ASSIGNED ** Inefficient Regular Expression Complex ...)
 	TODO: check
 CVE-2025-61554 (A divide-by-zero in VirtIO network device emulation in BitVisor from c ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a85697b3490be5ebe22dd31718cec1bc032571e4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a85697b3490be5ebe22dd31718cec1bc032571e4
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251016/7fd9b8eb/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list