[Git][security-tracker-team/security-tracker][master] new bouncycastle issue
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Sat Oct 25 16:29:26 BST 2025
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
88d7eec4 by Moritz Muehlenhoff at 2025-10-25T17:29:17+02:00
new bouncycastle issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -41,7 +41,9 @@ CVE-2025-34500 (Deck Mate 2's firmware update mechanism accepts packages without
CVE-2025-34293 (GN4 Publishing System versions prior to 2.6 contain an insecure direct ...)
NOT-FOR-US: GN4 Publishing System
CVE-2025-12194 (Uncontrolled Resource Consumption vulnerability in Legion of the Bounc ...)
- TODO: check
+ - bouncycastle <unfixed>
+ NOTE: https://github.com/bcgit/bc-lts-java/commit/f2776feac0c30230f7a5ac34eb24f5019caf0324
+ NOTE: https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902025%E2%80%9012194
CVE-2025-12095 (The Simple Registration for WooCommerce plugin for WordPress is vulner ...)
NOT-FOR-US: WordPress plugin
CVE-2025-12034 (The Fast Velocity Minify plugin for WordPress is vulnerable to Stored ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/88d7eec4710ec1ad584b466ac592cca1f569a8fc
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/88d7eec4710ec1ad584b466ac592cca1f569a8fc
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251025/89173f67/attachment.htm>
More information about the debian-security-tracker-commits
mailing list