[Git][security-tracker-team/security-tracker][master] mark remaining LXD issues as ignored for bookworm/trixie
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Fri Oct 17 17:39:55 BST 2025
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d0c8af4c by Moritz Mühlenhoff at 2025-10-17T18:39:21+02:00
mark remaining LXD issues as ignored for bookworm/trixie
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5659,14 +5659,20 @@ CVE-2025-54292 (Path traversal in Canonical LXD LXD-UI versions before 6.5 and 5
CVE-2025-54291 (Information disclosure in images API in Canonical LXD before 6.5 and 5 ...)
- incus 6.0.5-1
- lxd <removed>
+ [trixie] - lxd <no-dsa> (Minor issue, no fixed planned by upstream for 5.0)
+ [bookworm] - lxd <no-dsa> (Minor issue, no fixed planned by upstream for 5.0)
NOTE: https://github.com/canonical/lxd/security/advisories/GHSA-xch9-h8qw-85c7
CVE-2025-54290 (Information disclosure in image export API in Canonical LXD before 6.5 ...)
- incus 6.0.5-1
- lxd <removed>
+ [trixie] - lxd <no-dsa> (Minor issue, no fixed planned by upstream for 5.0)
+ [bookworm] - lxd <no-dsa> (Minor issue, no fixed planned by upstream for 5.0)
NOTE: https://github.com/canonical/lxd/security/advisories/GHSA-p3x5-mvmp-5f35
CVE-2025-54289 (Privilege Escalation in operations API in Canonical LXD <6.5 on multip ...)
- incus 6.0.5-1
- lxd <removed>
+ [trixie] - lxd <no-dsa> (Minor issue, no fixed planned by upstream for 5.0)
+ [bookworm] - lxd <no-dsa> (Minor issue, no fixed planned by upstream for 5.0)
NOTE: https://github.com/canonical/lxd/security/advisories/GHSA-3g72-chj4-2228
CVE-2025-54288 (Information Spoofing in devLXD Server in Canonical LXD versions 4.0 an ...)
- incus 6.0.5-1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d0c8af4c3a60667d779c1f044fead74ac62b6c50
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d0c8af4c3a60667d779c1f044fead74ac62b6c50
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251017/402ee11a/attachment.htm>
More information about the debian-security-tracker-commits
mailing list