[Git][security-tracker-team/security-tracker][master] 3 commits: mark CVE-2025-55763 as postponed for Bullseye

Thorsten Alteholz (@alteholz) alteholz at debian.org
Sun Sep 21 23:25:09 BST 2025 


Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker


Commits:
38dd16fc by Thorsten Alteholz at 2025-09-22T00:10:47+02:00
mark CVE-2025-55763 as postponed for Bullseye

- - - - -
75f5543f by Thorsten Alteholz at 2025-09-22T00:12:03+02:00
mark CVE-2025-4953 as postponed for Bullseye

- - - - -
b2bd4c3a by Thorsten Alteholz at 2025-09-22T00:18:11+02:00
add expat

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -1776,6 +1776,7 @@ CVE-2025-4953 (A flaw was found in Podman. In a Containerfile or Podman, data wr
 	[trixie] - podman <no-dsa> (Minor issue)
 	- libpod <removed>
 	[bookworm] - libpod <no-dsa> (Minor issue)
+	[bullseye] - libpod <postponed> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2367235
 	TODO: check details
 CVE-2025-4688 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
@@ -8540,6 +8541,7 @@ CVE-2025-55763 (Buffer Overflow in the URI parser of CivetWeb 1.14 through 1.16
 	- civetweb <unfixed> (bug #1112507)
 	[trixie] - civetweb <no-dsa> (Minor issue)
 	[bookworm] - civetweb <no-dsa> (Minor issue)
+	[bullseye] - civetweb <postponed> (Minor issue)
 	NOTE: https://github.com/krispybyte/CVE-2025-55763
 	NOTE: https://github.com/civetweb/civetweb/pull/1347
 	NOTE: https://github.com/civetweb/civetweb/issues/1348


=====================================
data/dla-needed.txt
=====================================
@@ -96,6 +96,9 @@ erlang
   NOTE: 20250710: Added by Front-Desk (apo)
   NOTE: 20250719: SPU in progress https://bugs.debian.org/1105009 (Beuc/front-desk)
 --
+expat
+  NOTE: 20250922: Added by Front-Desk (ta)
+--
 fastdds
   NOTE: 20250303: Added by Front-Desk (rouca)
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/93595c752dbddcde9b4d954138753a22ccf24e2e...b2bd4c3af5b8c59985bb1322dd89513a61c33051

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/93595c752dbddcde9b4d954138753a22ccf24e2e...b2bd4c3af5b8c59985bb1322dd89513a61c33051
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250921/cbda68d0/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list