[Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for two squid issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Oct 22 19:27:36 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d74094cb by Salvatore Bonaccorso at 2025-10-22T20:27:06+02:00
Track fixed version via unstable for two squid issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -787,7 +787,7 @@ CVE-2025-62171 (ImageMagick is an open source software suite for displaying, con
NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/cea1693e2ded51b4cc91c70c54096cbed1691c00 (7.1.2-7)
NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick6/commit/456771fae8baa9558a1421ec8d522e6937d9b2d7 (6.9.13-32)
CVE-2025-62168 (Squid is a caching proxy for the Web. In Squid versions prior to 7.2, ...)
- - squid <unfixed> (bug #1118341)
+ - squid 7.2-1 (bug #1118341)
NOTE: https://github.com/squid-cache/squid/security/advisories/GHSA-c8cc-phh7-xmxr
NOTE: https://github.com/squid-cache/squid/commit/0951a0681011dfca3d78c84fd7f1e19c78a4443f (SQUID_7_2)
CVE-2025-60514 (Tillywork v0.1.3 and below is vulnerable to SQL Injection in app/commo ...)
@@ -8668,7 +8668,7 @@ CVE-2025-59842 (jupyterlab is an extensible environment for interactive and repr
NOTE: https://github.com/jupyterlab/jupyterlab/security/advisories/GHSA-vvfj-2jqx-52jm
NOTE: https://github.com/jupyterlab/jupyterlab/commit/88ef373039a8cc09f27d3814382a512d9033675c
CVE-2025-59362 (Squid through 7.1 mishandles ASN.1 encoding of long SNMP OIDs. This oc ...)
- - squid <unfixed> (bug #1117048)
+ - squid 7.2-1 (bug #1117048)
[trixie] - squid <no-dsa> (Minor issue)
[bookworm] - squid <no-dsa> (Minor issue)
[bullseye] - squid <postponed> (Minor issue)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d74094cb33a03052d2b47408f0c2e861a044dae8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d74094cb33a03052d2b47408f0c2e861a044dae8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251022/5c099ba7/attachment.htm>
More information about the debian-security-tracker-commits
mailing list