[Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2025-59160 as EOL for Bullseye

Thorsten Alteholz (@alteholz) alteholz at debian.org
Wed Sep 17 15:30:55 BST 2025 


Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f5a277ed by Thorsten Alteholz at 2025-09-17T16:20:45+02:00
mark CVE-2025-59160 as EOL for Bullseye

- - - - -
88980477 by Thorsten Alteholz at 2025-09-17T16:23:43+02:00
mark CVE-2024-44905 as postponed for Bullseye

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -120,6 +120,7 @@ CVE-2025-59161 (Element Web is a Matrix web client built using the Matrix React
 	- element-web <itp> (bug #866502)
 CVE-2025-59160 (Matrix JavaScript SDK is a Matrix Client-Server SDK for JavaScript and ...)
 	- node-matrix-js-sdk <removed>
+	[bullseye] - node-matrix-js-sdk <end-of-life> (see #1094651)
 CVE-2025-59050 (Greenshot is an open source Windows screenshot utility. Greenshot 1.3. ...)
 	NOT-FOR-US: Greenshot
 CVE-2025-58749 (WebAssembly Micro Runtime (WAMR) is a lightweight standalone WebAssemb ...)
@@ -30717,6 +30718,7 @@ CVE-2024-44905 (go-pg pg v10.13.0 was discovered to contain a SQL injection vuln
 	- golang-gopkg-pg.v5 <unfixed> (bug #1111939)
 	[trixie] - golang-gopkg-pg.v5 <no-dsa> (Minor issue)
 	[bookworm] - golang-gopkg-pg.v5 <no-dsa> (Minor issue)
+	[bullseye] - golang-gopkg-pg.v5 <postponed> (Minor issue)
 	NOTE: https://github.com/advisories/GHSA-6xp3-p59p-q4fj
 	NOTE: Fixed by: https://github.com/go-pg/pg/commit/eff50a43724e52347559687a6945c116afbb41c1 (v10.15.0)
 CVE-2023-45256 (Multiple SQL injection vulnerabilities in the EuroInformation Monetico ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/559ce5e0c2f78ef879ff3996f35ebc6b10336731...889804776dccea8aa0303004e4ba3bf566c476b8

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/559ce5e0c2f78ef879ff3996f35ebc6b10336731...889804776dccea8aa0303004e4ba3bf566c476b8
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250917/b259a400/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list