[Git][security-tracker-team/security-tracker][master] tryton-soa, bind9 DSAs
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Thu Oct 23 19:12:11 BST 2025
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
95492bd6 by Moritz Mühlenhoff at 2025-10-23T20:06:42+02:00
tryton-soa, bind9 DSAs
- - - - -
3 changed files:
- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -1245,6 +1245,8 @@ CVE-2020-36855 (A security vulnerability has been detected in DCMTK up to 3.6.5.
NOTE: Fixed by: https://github.com/DCMTK/dcmtk/commit/0fef9f02e7c3976c36826b272ed4929f3977c3db (DCMTK-3.6.6)
CVE-2025-XXXX [Stored XSS Vulnerability]
- tryton-sao 7.0.38+ds1-1
+ [trixie] - tryton-sao 7.0.28+ds1-1+deb13u1
+ [bookworm] - tryton-sao 6.0.28+ds1-2+deb12u1
NOTE: https://discuss.tryton.org/t/security-release-for-issue-14290/8895
NOTE: https://foss.heptapod.net/tryton/tryton/-/issues/14290
CVE-2025-9133 (A missing authorization vulnerability in Zyxel ATP series firmware ver ...)
=====================================
data/DSA/list
=====================================
@@ -1,3 +1,10 @@
+[23 Oct 2025] DSA-6034-1 tryton-sao - security update
+ [bookworm] - tryton-sao 6.0.28+ds1-2+deb12u1
+ [trixie] - tryton-sao 7.0.28+ds1-1+deb13u1
+[23 Oct 2025] DSA-6033-1 bind9 - security update
+ {CVE-2025-8677 CVE-2025-40778 CVE-2025-40780}
+ [bookworm] - bind9 1:9.18.41-1~deb12u1
+ [trixie] - bind9 1:9.20.15-1~deb13u1
[22 Oct 2025] DSA-6032-1 request-tracker4 - security update
{CVE-2025-61873}
[bookworm] - request-tracker4 4.4.6+dfsg-1.1+deb12u3
=====================================
data/dsa-needed.txt
=====================================
@@ -15,8 +15,6 @@ If needed, specify the release by adding a slash after the name of the source pa
amd64-microcode (carnil)
Coordinating with maintainer DSA/bookworm-pu and sync with mitgations in src:linux
--
-bind9 (jmm)
---
chromium (dilinger)
--
cpp-httplib
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/95492bd6f63a717a4164edf6839a502cb6dc0667
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/95492bd6f63a717a4164edf6839a502cb6dc0667
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251023/7fc9069c/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list