[Git][security-tracker-team/security-tracker][master] Update some CVEs for imagemagick in bookworm
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Oct 19 20:42:50 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
452d5f5a by Salvatore Bonaccorso at 2025-10-19T21:40:46+02:00
Update some CVEs for imagemagick in bookworm
They were fixed with the DSA. They need to be marked separately as they
were not in the common set of CVEs fixed.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -32656,7 +32656,7 @@ CVE-2025-53101 (ImageMagick is free and open-source software used for editing an
{DLA-4297-1}
- imagemagick 8:7.1.1.47+dfsg1-2 (bug #1109339)
[trixie] - imagemagick 8:7.1.1.43+dfsg1-1+deb13u1
- [bookworm] - imagemagick <no-dsa> (Minor issue)
+ [bookworm] - imagemagick 8:6.9.11.60+dfsg-1.6+deb12u4
NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-qh3h-j545-h8c9
NOTE: https://github.com/ImageMagick/ImageMagick/commit/66dc8f51c11b0ae1f1cdeacd381c3e9a4de69774 (7.1.2-0)
NOTE: https://github.com/ImageMagick/ImageMagick6/commit/643deeb60803488373cd4799b24d5786af90972e (6.9.13-26)
@@ -32664,7 +32664,7 @@ CVE-2025-53019 (ImageMagick is free and open-source software used for editing an
{DLA-4297-1}
- imagemagick 8:7.1.1.47+dfsg1-2 (bug #1109339)
[trixie] - imagemagick 8:7.1.1.43+dfsg1-1+deb13u1
- [bookworm] - imagemagick <no-dsa> (Minor issue)
+ [bookworm] - imagemagick 8:6.9.11.60+dfsg-1.6+deb12u4
NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-cfh4-9f7v-fhrc
NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/fc3ab0812edef903bbb2473c0ee652ddfd04fe5c (7.1.2-0)
CVE-2025-53015 (ImageMagick is free and open-source software used for editing and mani ...)
@@ -32680,7 +32680,7 @@ CVE-2025-53014 (ImageMagick is free and open-source software used for editing an
{DLA-4297-1}
- imagemagick 8:7.1.1.47+dfsg1-2 (bug #1109339)
[trixie] - imagemagick 8:7.1.1.43+dfsg1-1+deb13u1
- [bookworm] - imagemagick <no-dsa> (Minor issue)
+ [bookworm] - imagemagick 8:6.9.11.60+dfsg-1.6+deb12u4
NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-hm4x-r5hc-794f
NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/29d82726c7ec20c07c49ba263bdcea16c2618e03 (7.1.2-0)
CVE-2025-52363 (Tenda CP3 Pro Firmware V22.5.4.93 contains a hardcoded root password h ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/452d5f5a9c5efd01be68e599a98e29edaead2554
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/452d5f5a9c5efd01be68e599a98e29edaead2554
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251019/2e6392b9/attachment.htm>
More information about the debian-security-tracker-commits
mailing list