[Git][security-tracker-team/security-tracker][master] new virtualbox issues
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Tue Oct 21 21:52:42 BST 2025
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
52c6d329 by Moritz Muehlenhoff at 2025-10-21T22:51:36+02:00
new virtualbox issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -13,7 +13,7 @@ CVE-2025-62763 (Zimbra Collaboration (ZCS) before 10.1.12 allows SSRF because of
CVE-2025-62661 (Incorrect Default Permissions vulnerability in The Wikimedia Foundatio ...)
TODO: check
CVE-2025-62641 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
- TODO: check
+ - virtualbox <unfixed>
CVE-2025-62605 (Mastodon is a free, open-source social network server based on Activit ...)
- mastodon <itp> (bug #859741)
CVE-2025-62598 (WeGIA is an open source Web Manager for Institutions with a focus on P ...)
@@ -23,17 +23,17 @@ CVE-2025-62597 (WeGIA is an open source Web Manager for Institutions with a focu
CVE-2025-62595 (Koa is expressive middleware for Node.js using ES2017 async functions. ...)
NOT-FOR-US: Koa
CVE-2025-62592 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
- TODO: check
+ - virtualbox <unfixed>
CVE-2025-62591 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
- TODO: check
+ - virtualbox <unfixed>
CVE-2025-62590 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
- TODO: check
+ - virtualbox <unfixed>
CVE-2025-62589 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
- TODO: check
+ - virtualbox <unfixed>
CVE-2025-62588 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
- TODO: check
+ - virtualbox <unfixed>
CVE-2025-62587 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
- TODO: check
+ - virtualbox <unfixed>
CVE-2025-62518 (astral-tokio-tar is a tar archive reading/writing library for async Ru ...)
- rust-astral-tokio-tar <unfixed>
NOTE: https://github.com/astral-sh/tokio-tar/security/advisories/GHSA-j5gw-2vrg-8fgx
@@ -80,9 +80,9 @@ CVE-2025-61762 (Vulnerability in the PeopleSoft Enterprise FIN Payables product
CVE-2025-61761 (Vulnerability in the PeopleSoft Enterprise FIN Maintenance Management ...)
TODO: check
CVE-2025-61760 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
- TODO: check
+ - virtualbox <unfixed>
CVE-2025-61759 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
- TODO: check
+ - virtualbox <unfixed>
CVE-2025-61758 (Vulnerability in the PeopleSoft Enterprise FIN IT Asset Management pro ...)
TODO: check
CVE-2025-61757 (Vulnerability in the Identity Manager product of Oracle Fusion Middlew ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/52c6d3293ac7e91f35f5c43c542acee82fea48ee
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/52c6d3293ac7e91f35f5c43c542acee82fea48ee
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251021/840f525d/attachment.htm>
More information about the debian-security-tracker-commits
mailing list