[Git][security-tracker-team/security-tracker][master] bugnums

Moritz Muehlenhoff (@jmm) jmm at debian.org
Tue Oct 21 23:26:59 BST 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ab6de57b by Moritz Muehlenhoff at 2025-10-22T00:26:38+02:00
bugnums

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -13,7 +13,7 @@ CVE-2025-62763 (Zimbra Collaboration (ZCS) before 10.1.12 allows SSRF because of
 CVE-2025-62661 (Incorrect Default Permissions vulnerability in The Wikimedia Foundatio ...)
 	NOT-FOR-US: Mediawiki extension GrowthExperiments
 CVE-2025-62641 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
-	- virtualbox <unfixed>
+	- virtualbox <unfixed> (bug #1118542)
 CVE-2025-62605 (Mastodon is a free, open-source social network server based on Activit ...)
 	- mastodon <itp> (bug #859741)
 CVE-2025-62598 (WeGIA is an open source Web Manager for Institutions with a focus on P ...)
@@ -23,17 +23,17 @@ CVE-2025-62597 (WeGIA is an open source Web Manager for Institutions with a focu
 CVE-2025-62595 (Koa is expressive middleware for Node.js using ES2017 async functions. ...)
 	NOT-FOR-US: Koa
 CVE-2025-62592 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
-	- virtualbox <unfixed>
+	- virtualbox <unfixed> (bug #1118542)
 CVE-2025-62591 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
-	- virtualbox <unfixed>
+	- virtualbox <unfixed> (bug #1118542)
 CVE-2025-62590 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
-	- virtualbox <unfixed>
+	- virtualbox <unfixed> (bug #1118542)
 CVE-2025-62589 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
-	- virtualbox <unfixed>
+	- virtualbox <unfixed> (bug #1118542)
 CVE-2025-62588 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
-	- virtualbox <unfixed>
+	- virtualbox <unfixed> (bug #1118542)
 CVE-2025-62587 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
-	- virtualbox <unfixed>
+	- virtualbox <unfixed> (bug #1118542)
 CVE-2025-62518 (astral-tokio-tar is a tar archive reading/writing library for async Ru ...)
 	- rust-astral-tokio-tar <unfixed>
 	NOTE: https://github.com/astral-sh/tokio-tar/security/advisories/GHSA-j5gw-2vrg-8fgx
@@ -80,9 +80,9 @@ CVE-2025-61762 (Vulnerability in the PeopleSoft Enterprise FIN Payables product
 CVE-2025-61761 (Vulnerability in the PeopleSoft Enterprise FIN Maintenance Management  ...)
 	NOT-FOR-US: Oracle
 CVE-2025-61760 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
-	- virtualbox <unfixed>
+	- virtualbox <unfixed> (bug #1118542)
 CVE-2025-61759 (Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualiza ...)
-	- virtualbox <unfixed>
+	- virtualbox <unfixed> (bug #1118542)
 CVE-2025-61758 (Vulnerability in the PeopleSoft Enterprise FIN IT Asset Management pro ...)
 	NOT-FOR-US: Oracle
 CVE-2025-61757 (Vulnerability in the Identity Manager product of Oracle Fusion Middlew ...)
@@ -173,7 +173,7 @@ CVE-2025-53071 (Vulnerability in the Oracle Applications Framework product of Or
 CVE-2025-53070 (Vulnerability in the Oracle Solaris product of Oracle Systems (compone ...)
 	NOT-FOR-US: Oracle
 CVE-2025-53069 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
-	- mysql-8.0 <unfixed>
+	- mysql-8.0 <unfixed> (bug #1118543)
 CVE-2025-53068 (Vulnerability in the Oracle Solaris product of Oracle Systems (compone ...)
 	NOT-FOR-US: Oracle
 CVE-2025-53067 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
@@ -192,7 +192,7 @@ CVE-2025-53064 (Vulnerability in the Oracle Applications Framework product of Or
 CVE-2025-53063 (Vulnerability in the PeopleSoft Enterprise PeopleTools product of Orac ...)
 	NOT-FOR-US: Oracle
 CVE-2025-53062 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
-	- mysql-8.0 <unfixed>
+	- mysql-8.0 <unfixed> (bug #1118543)
 CVE-2025-53061 (Vulnerability in the PeopleSoft Enterprise PeopleTools product of Orac ...)
 	NOT-FOR-US: Oracle
 CVE-2025-53060 (Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle  ...)
@@ -213,9 +213,9 @@ CVE-2025-53056 (Vulnerability in the JD Edwards EnterpriseOne Tools product of O
 CVE-2025-53055 (Vulnerability in the PeopleSoft Enterprise PeopleTools product of Orac ...)
 	NOT-FOR-US: Oracle
 CVE-2025-53054 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
-	- mysql-8.0 <unfixed>
+	- mysql-8.0 <unfixed> (bug #1118543)
 CVE-2025-53053 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
-	- mysql-8.0 <unfixed>
+	- mysql-8.0 <unfixed> (bug #1118543)
 CVE-2025-53052 (Vulnerability in the Oracle Workflow product of Oracle E-Business Suit ...)
 	NOT-FOR-US: Oracle
 CVE-2025-53051 (Vulnerability in the RDBMS Functional Index component of Oracle Databa ...)
@@ -231,17 +231,17 @@ CVE-2025-53047 (Vulnerability in the Portable Clusterware component of Oracle Da
 CVE-2025-53046 (Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracl ...)
 	NOT-FOR-US: Oracle
 CVE-2025-53045 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
-	- mysql-8.0 <unfixed>
+	- mysql-8.0 <unfixed> (bug #1118543)
 CVE-2025-53044 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
-	- mysql-8.0 <unfixed>
+	- mysql-8.0 <unfixed> (bug #1118543)
 CVE-2025-53043 (Vulnerability in the Oracle Product Hub product of Oracle E-Business S ...)
 	NOT-FOR-US: Oracle
 CVE-2025-53042 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
-	- mysql-8.0 <unfixed>
+	- mysql-8.0 <unfixed> (bug #1118543)
 CVE-2025-53041 (Vulnerability in the Oracle iStore product of Oracle E-Business Suite  ...)
 	NOT-FOR-US: Oracle
 CVE-2025-53040 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
-	- mysql-8.0 <unfixed>
+	- mysql-8.0 <unfixed> (bug #1118543)
 CVE-2025-53037 (Vulnerability in the Oracle Financial Services Analytical Applications ...)
 	NOT-FOR-US: Oracle
 CVE-2025-53036 (Vulnerability in the Oracle Financial Services Analytical Applications ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ab6de57bc9fb2429698921109ee9b143fa140654

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ab6de57bc9fb2429698921109ee9b143fa140654
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251021/0d9dba40/attachment.htm>

More information about the debian-security-tracker-commits mailing list