[Git][security-tracker-team/security-tracker][master] Reserve DLA-4340-1 for libphp-adodb
Bastien Roucariès (@rouca)
rouca at debian.org
Mon Oct 20 15:30:07 BST 2025
Bastien Roucariès pushed to branch master at Debian Security Tracker / security-tracker
Commits:
838b51cd by Bastien Roucariès at 2025-10-20T16:29:49+02:00
Reserve DLA-4340-1 for libphp-adodb
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -27062,7 +27062,6 @@ CVE-2025-54119 (ADOdb is a PHP database class library that provides abstractions
- libphp-adodb 5.22.10-0.1 (bug #1110464)
[trixie] - libphp-adodb <no-dsa> (Minor issue; can be fixed via point release)
[bookworm] - libphp-adodb <no-dsa> (Minor issue; can be fixed via point release)
- [bullseye] - libphp-adodb <postponed> (Minor issue)
NOTE: https://github.com/ADOdb/ADOdb/security/advisories/GHSA-vf2r-cxg9-p7rf
NOTE: https://github.com/ADOdb/ADOdb/issues/1083
NOTE: Fixed by: https://github.com/ADOdb/ADOdb/commit/5b8bd52cdcffefb4ecded1b399c98cfa516afe03 (v5.22.10)
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[20 Oct 2025] DLA-4340-1 libphp-adodb - security update
+ {CVE-2025-54119}
+ [bullseye] - libphp-adodb 5.20.19-1+deb11u3
[19 Oct 2025] DLA-4339-1 imagemagick - security update
{CVE-2025-62171}
[bullseye] - imagemagick 8:6.9.11.60+dfsg-1.3+deb11u7
=====================================
data/dla-needed.txt
=====================================
@@ -195,12 +195,6 @@ lemonldap-ng (abhijith)
NOTE: 20250813: CVE-2024-52948 was marked as <postponed>, but fixed in bookworm. (lamby)
NOTE: 20251009: Backporting CVE-2024-52948 (abhijith)
--
-libphp-adodb (rouca)
- NOTE: 20250807: Added by Front-Desk (rouca)
- NOTE: 20250807: Fix other CVEs and try to propose a PU (rouca)
- NOTE: 20250917: Only SPU needed. See 6b2cb4e (abhijith)
- NOTE: 20250924: Raised OSPU and SPU #1116015 #1116017 (abhijith)
---
libsoup2.4
NOTE: 20250408: Added by Front-Desk (Beuc)
NOTE: 20250427: libsoup2.4 2.72.0-2+deb11u2 (bullseye) uploaded ...
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/838b51cd824dcb454b8cab172ab6acfe494f7ca9
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/838b51cd824dcb454b8cab172ab6acfe494f7ca9
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251020/aca1d10d/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list