[Git][security-tracker-team/security-tracker][master] more tensorflow updates

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9ab1f257 by Moritz Muehlenhoff at 2025-09-02T09:14:48+02:00
more tensorflow updates

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -231329,7 +231329,9 @@ CVE-2023-25803 (Roxy-WI is a Web interface for managing Haproxy, Nginx, Apache,
 CVE-2023-25802 (Roxy-WI is a Web interface for managing Haproxy, Nginx, Apache, and Ke ...)
 	NOT-FOR-US: Roxy-WI
 CVE-2023-25801 (TensorFlow is an open source machine learning platform. Prior to versi ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
+	NOTE: https://github.com/tensorflow/tensorflow/security/advisories/GHSA-f49c-87jh-g47q
+	NOTE: https://github.com/tensorflow/tensorflow/commit/ee50d1e00f81f62a4517453f721c634bbb478307 (v2.12.0-rc0)
 CVE-2023-25800 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2023-25799 (Missing Authorization vulnerability in Themeum Tutor LMS.This issue af ...)
@@ -232056,15 +232058,25 @@ CVE-2023-0773 (The vulnerability exists in Uniview IP Camera due to identificati
 CVE-2023-0772 (The Popup Builder by OptinMonster WordPress plugin before 2.12.2 does  ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2023-25676 (TensorFlow is an open source machine learning platform. When running v ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
+	NOTE: https://github.com/tensorflow/tensorflow/security/advisories/GHSA-6wfh-89q8-44jq
+	NOTE: https://github.com/tensorflow/tensorflow/commit/da66bc6d5ff466aee084f9e7397980a24890cd15 (v2.12.0-rc0)
 CVE-2023-25675 (TensorFlow is an open source machine learning platform. When running v ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
+	NOTE: https://github.com/tensorflow/tensorflow/security/advisories/GHSA-7x4v-9gxg-9hwj
+	NOTE: https://github.com/tensorflow/tensorflow/commit/8ae76cf085f4be26295d2ecf2081e759e04b8acf (v2.12.0-rc0)
 CVE-2023-25674 (TensorFlow is an open source machine learning platform. Versions prior ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
+	NOTE: https://github.com/tensorflow/tensorflow/security/advisories/GHSA-gf97-q72m-7579
+	NOTE: https://github.com/tensorflow/tensorflow/commit/728113a3be690facad6ce436660a0bc1858017fa (v2.12.0-rc0)
 CVE-2023-25673 (TensorFlow is an open source platform for machine learning. Versions p ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
+	NOTE: https://github.com/tensorflow/tensorflow/security/advisories/GHSA-647v-r7qq-24fh
+	NOTE: https://github.com/tensorflow/tensorflow/commit/728113a3be690facad6ce436660a0bc1858017fa (v2.12.0-rc0)
 CVE-2023-25672 (TensorFlow is an open source platform for machine learning. The functi ...)
-	- tensorflow <itp> (bug #804612)
+	- tensorflow <not-affected> (Fixed before initial upload to the archive)
+	NOTE: https://github.com/tensorflow/tensorflow/security/advisories/GHSA-94mm-g2mv-8p7r
+	NOTE: https://github.com/tensorflow/tensorflow/commit/980b22536abcbbe1b4a5642fc940af33d8c19b69 (v2.12.0-rc0)
 CVE-2023-25671 (TensorFlow is an open source platform for machine learning. There is o ...)
 	- tensorflow <itp> (bug #804612)
 CVE-2023-25670 (TensorFlow is an open source platform for machine learning. Versions p ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9ab1f257e99fe27af4ab307ea6f33f3999a77efc

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9ab1f257e99fe27af4ab307ea6f33f3999a77efc
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250902/d41a2080/attachment.htm>