[Git][security-tracker-team/security-tracker][master] dla: p7zip assessment
Sylvain Beucler (@beuc)
gitlab at salsa.debian.org
Tue Jan 6 16:06:02 GMT 2026
Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker
Commits:
63f36c57 by Sylvain Beucler at 2026-01-06T17:05:58+01:00
dla: p7zip assessment
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=====================================
data/dla-needed.txt
=====================================
@@ -305,6 +305,10 @@ opencryptoki
p7zip
NOTE: 20251020: Added by Front-Desk (dleidert)
NOTE: 20251020: I disagree with the low-severity ratings; but finding the patches might be a hard (dleidert/front-desk)
+ NOTE: 20260106: CVE-2023-52168 & CVE-2025-55188: should be patchable
+ NOTE: 20260106: CVE-2025-11001 & CVE-2025-11002: no isolated patch
+ NOTE: 20260106: Proposed EOL or full replacement with 7zip (Beuc)
+ NOTE: 20260106: https://salsa.debian.org/lts-team/lts-updates-tasks/-/issues/306
--
p7zip-rar
NOTE: 20250719: Added by Front-Desk (Beuc)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/63f36c57c27d19366ec26334eefd1efad5e37aa3
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/63f36c57c27d19366ec26334eefd1efad5e37aa3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260106/afadbd06/attachment.htm>
More information about the debian-security-tracker-commits
mailing list