[Git][security-tracker-team/security-tracker][master] lts: re-add imagemagick due to incomplete fix for CVE-2025-57803

[Daniel Leidert (@dleidert)]

Daniel Leidert pushed to branch master at Debian Security Tracker / security-tracker


Commits:
978952db by Daniel Leidert at 2025-10-18T14:35:21+02:00
lts: re-add imagemagick due to incomplete fix for CVE-2025-57803

- - - - -


1 changed file:

- data/dla-needed.txt


Changes:

=====================================
data/dla-needed.txt
=====================================
@@ -175,6 +175,12 @@ icingaweb2
   NOTE: 20250603: I also saw in the release log that multiple issues were fixed without mentioning any CVE (dleidert)
   NOTE: 20250603: upstream should be asked about the patches for CVE 2025-* (dleidert)
 --
+imagemagick
+  NOTE: 20251018: Added by Front-Desk (dleidert)
+  NOTE: 20251018: Fix for CVE-2025-57803 in DLA-4297-1 is incomplete; see CVE-2025-62171 (dleidert/fd)
+  NOTE: 20251018: There hasn't been any triage by the secteam yet; but there was a DSA for CVE-2025-57803 (dleidert/fd)
+  NOTE: 20251018: Coordinate with secteam (dleidert/fd)
+--
 intel-microcode (tobi)
   NOTE: 20250813: Added by Front-Desk (lamby)
   NOTE: 20250821: DSA/PU planned; wait for DSA/PU and coordinate with maintainer (dleidert)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/978952dbc7bf2b19ae2f68d6be8f97bd92896d9a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/978952dbc7bf2b19ae2f68d6be8f97bd92896d9a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251018/40d29430/attachment-0001.htm>