[Git][security-tracker-team/security-tracker][master] CVE-2025-7425/libxlst: Mention mitigation in bullseye's libxml2

[Guilhem Moulin (@guilhem)]

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker


Commits:
182d9a73 by Guilhem Moulin at 2025-10-01T00:02:46+02:00
CVE-2025-7425/libxlst: Mention mitigation in bullseye's libxml2

Via DLA-4319-1

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -26051,7 +26051,8 @@ CVE-2025-7425 (A flaw was found in libxslt where the attribute type, atype, flag
 	NOTE: https://gitlab.gnome.org/GNOME/libxml2/-/commit/f1e1f13b766eb580a8dcc0c4e7a447346dfd862e (master)
 	NOTE: Mitigation landed in sid in 2.14.5+dfsg-0.1. Additionally the update for libxml2 as provided
 	NOTE: via DSA 5990-1 (for trixie: 2.12.7+dfsg+really2.9.14-2.1+deb13u1, for bookworm
-	NOTE: 2.9.14+dfsg-1.3~deb12u4) mitigate the issue in trixie and bookworm.
+	NOTE: 2.9.14+dfsg-1.3~deb12u4) and DLA 4319-1 (2.9.10+dfsg-6.7+deb11u9) mitigate the issue in trixie,
+	NOTE: bookworm and bullseye.
 	NOTE: Potential libxslt-only solution: https://gitlab.gnome.org/GNOME/libxslt/-/issues/140#note_2513942
 CVE-2025-7424 (A flaw was found in the libxslt library. The same memory field, psvi,  ...)
 	{DSA-5979-1 DLA-4309-1}



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/182d9a7330395e50ccfcbcb9b6c3dfbc453845ab

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/182d9a7330395e50ccfcbcb9b6c3dfbc453845ab
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250930/70ee08d6/attachment.htm>