[Git][security-tracker-team/security-tracker][master] Reserve DLA-4343-1 for raptor2
Thorsten Alteholz (@alteholz)
alteholz at debian.org
Wed Oct 22 17:52:25 BST 2025
Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d07739f3 by Thorsten Alteholz at 2025-10-22T18:52:08+02:00
Reserve DLA-4343-1 for raptor2
- - - - -
2 changed files:
- data/CVE/list
- data/DLA/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -94342,14 +94342,12 @@ CVE-2024-5872 (On affected platforms running Arista EOS, a specially crafted pac
CVE-2024-57823 (In Raptor RDF Syntax Library through 2.0.16, there is an integer under ...)
- raptor2 2.0.16-6 (bug #1067896)
[bookworm] - raptor2 2.0.15-4+deb12u1
- [bullseye] - raptor2 <postponed> (Minor issue, revisit when fixed upstream)
NOTE: https://github.com/pedrib/PoC/blob/master/fuzzing/raptor-fuzz.md
NOTE: https://github.com/dajobe/raptor/issues/70
NOTE: https://github.com/dajobe/raptor/commit/da7a79976bd0314c23cce55d22495e7d29301c44
CVE-2024-57822 (In Raptor RDF Syntax Library through 2.0.16, there is a heap-based buf ...)
- raptor2 2.0.16-6 (bug #1067896)
[bookworm] - raptor2 2.0.15-4+deb12u1
- [bullseye] - raptor2 <postponed> (Minor issue, revisit when fixed upstream)
NOTE: https://github.com/pedrib/PoC/blob/master/fuzzing/raptor-fuzz.md
NOTE: https://github.com/dajobe/raptor/issues/70
NOTE: https://github.com/dajobe/raptor/commit/ece2c79df43091686a538b8231cf387d84bfa60e
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[22 Oct 2025] DLA-4343-1 raptor2 - security update
+ {CVE-2024-57822 CVE-2024-57823}
+ [bullseye] - raptor2 2.0.14-1.2+deb11u1
[22 Oct 2025] DLA-4342-1 gimp - security update
{CVE-2025-2760 CVE-2025-2761 CVE-2025-5473 CVE-2025-6035 CVE-2025-10922 CVE-2025-48797 CVE-2025-48798}
[bullseye] - gimp 2.10.22-4+deb11u3
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d07739f3eb3fa743f2e67b30dc5be2ad96fc869b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d07739f3eb3fa743f2e67b30dc5be2ad96fc869b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251022/48215c3b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list