[Git][security-tracker-team/security-tracker][master] Update status for three hdf5 issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Sep 26 20:13:23 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
684ba7d4 by Salvatore Bonaccorso at 2025-09-26T21:12:56+02:00
Update status for three hdf5 issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -29255,6 +29255,8 @@ CVE-2025-6857 (A vulnerability has been found in HDF5 1.14.6 and classified as p
CVE-2025-6856 (A vulnerability, which was classified as problematic, was found in HDF ...)
- hdf5 <unfixed> (unimportant)
NOTE: https://github.com/HDFGroup/hdf5/issues/5574
+ NOTE: https://github.com/HDFGroup/hdf5/pull/5829
+ NOTE: https://github.com/HDFGroup/hdf5/commit/29c847a43db0cdc85b01cafa5a7613ea73932675
NOTE: Negligible security impact
CVE-2025-6855 (A vulnerability, which was classified as critical, has been found in c ...)
NOT-FOR-US: Langchain-Chatchat
@@ -29358,6 +29360,8 @@ CVE-2025-6816 (A vulnerability classified as problematic was found in HDF5 1.14.
[trixie] - hdf5 <no-dsa> (Minor issue)
[bookworm] - hdf5 <no-dsa> (Minor issue)
NOTE: https://github.com/HDFGroup/hdf5/issues/5571
+ NOTE: https://github.com/HDFGroup/hdf5/pull/5829
+ NOTE: https://github.com/HDFGroup/hdf5/commit/29c847a43db0cdc85b01cafa5a7613ea73932675
CVE-2025-6778 (A vulnerability, which was classified as problematic, was found in cod ...)
NOT-FOR-US: code-projects
CVE-2025-6777 (A vulnerability, which was classified as critical, has been found in c ...)
@@ -59415,6 +59419,8 @@ CVE-2025-2923 (A vulnerability, which was classified as problematic, has been fo
[trixie] - hdf5 <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - hdf5 <postponed> (Minor issue, revisit when fixed upstream)
NOTE: https://github.com/HDFGroup/hdf5/issues/5381
+ NOTE: https://github.com/HDFGroup/hdf5/pull/5829
+ NOTE: https://github.com/HDFGroup/hdf5/commit/29c847a43db0cdc85b01cafa5a7613ea73932675
CVE-2025-2922 (A vulnerability classified as problematic was found in Netis WF-2404 1 ...)
NOT-FOR-US: Netis
CVE-2025-2921 (A vulnerability classified as critical has been found in Netis WF-2404 ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/684ba7d45c218f6f1351bae1d475083fd20dce7e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/684ba7d45c218f6f1351bae1d475083fd20dce7e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250926/556dd74c/attachment.htm>
More information about the debian-security-tracker-commits
mailing list