[Git][security-tracker-team/security-tracker][master] Add Debian bug references for quickjs issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Oct 17 08:14:28 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9e92fda1 by Salvatore Bonaccorso at 2025-10-17T09:13:52+02:00
Add Debian bug references for quickjs issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -12,31 +12,31 @@ CVE-2025-6338 (There is an incomplete cleanup vulnerability in Qt Network's Scha
CVE-2025-62586 (OPEXUS FOIAXpress allows a remote, unauthenticated attacker to reset t ...)
NOT-FOR-US: OPEXUS FOIAXpress
CVE-2025-62496 (A vulnerability exists in the QuickJS engine's BigInt string parsing l ...)
- - quickjs <unfixed>
+ - quickjs <unfixed> (bug #1118231)
NOTE: https://issuetracker.google.com/434193016
NOTE: Fixed in the 2025-09-13 release (https://bellard.org/quickjs/Changelog)
CVE-2025-62495 (An integer overflow vulnerability exists in the QuickJS regular expres ...)
- - quickjs <unfixed>
+ - quickjs <unfixed> (bug #1118231)
NOTE: https://issuetracker.google.com/434196926
NOTE: Fixed with 2025-09-13 release (https://bellard.org/quickjs/Changelog)
CVE-2025-62494 (A type confusion vulnerability exists in the handling of the string ad ...)
- - quickjs <unfixed>
+ - quickjs <unfixed> (bug #1118231)
NOTE: https://issuetracker.google.com/434193023
NOTE: Fixed in the 2025-09-13 release (https://bellard.org/quickjs/Changelog)
CVE-2025-62493 (A vulnerability exists in the QuickJS engine's BigInt string conversio ...)
- - quickjs <unfixed>
+ - quickjs <unfixed> (bug #1118231)
NOTE: https://issuetracker.google.com/434193024
NOTE: Fixed in the 2025-09-13 release (https://bellard.org/quickjs/Changelog)
CVE-2025-62492 (A vulnerability stemming from floating-point arithmetic precision erro ...)
- - quickjs <unfixed>
+ - quickjs <unfixed> (bug #1118231)
NOTE: https://issuetracker.google.com/434194797
NOTE: Fixed in the 2025-09-13 release (https://bellard.org/quickjs/Changelog)
CVE-2025-62491 (A Use-After-Free (UAF) vulnerability exists in the QuickJS engine's st ...)
- - quickjs <unfixed>
+ - quickjs <unfixed> (bug #1118231)
NOTE: https://issuetracker.google.com/434195203
NOTE: Fixed n the 2025-09-13 release (https://bellard.org/quickjs/Changelog)
CVE-2025-62490 (In quickjs, in js_print_object, when printing an array, the function f ...)
- - quickjs <unfixed>
+ - quickjs <unfixed> (bug #1118231)
NOTE: https://issuetracker.google.com/434196651
NOTE: Fixed in the 2025-09-13 release (https://bellard.org/quickjs/Changelog)
CVE-2025-62428 (Drawing-Captcha APP provides interactive, engaging verification for We ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9e92fda179182e60b822b0bba7b45b566c8d2a01
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9e92fda179182e60b822b0bba7b45b566c8d2a01
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251017/26939466/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list