[Git][security-tracker-team/security-tracker][master] golang-github-ulikunitz-xz fixed in sid
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Mon Sep 1 16:32:55 BST 2025
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
62289304 by Moritz Muehlenhoff at 2025-09-01T17:32:27+02:00
golang-github-ulikunitz-xz fixed in sid
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -615,7 +615,7 @@ CVE-2025-58062 (LSTM-Kirigaya's openmcp-client is a vscode plugin for mcp develo
CVE-2025-58061 (OpenEBS Local PV RawFile allows dynamic deployment of Stateful Persist ...)
NOT-FOR-US: OpenEBS
CVE-2025-58058 (xz is a pure golang package for reading and writing xz-compressed file ...)
- - golang-github-ulikunitz-xz <unfixed> (bug #1112508)
+ - golang-github-ulikunitz-xz 0.5.15-1 (bug #1112508)
NOTE: https://github.com/ulikunitz/xz/security/advisories/GHSA-jc7w-c686-c4v9
NOTE: https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2 (v0.5.14-rc.1)
CVE-2025-54777 (Uncaught exception issue exists in Multiple products in bizhub series. ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/622893046595b65df773a0568e53b552f1ea6aaf
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/622893046595b65df773a0568e53b552f1ea6aaf
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250901/f70d081f/attachment.htm>
More information about the debian-security-tracker-commits
mailing list