[Git][security-tracker-team/security-tracker][master] Track fixes via experimental for openbabel issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Jun 5 19:40:19 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
6f20c32d by Salvatore Bonaccorso at 2026-06-05T20:39:47+02:00
Track fixes via experimental for openbabel issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -56114,6 +56114,7 @@ CVE-2026-3410 (A weakness has been identified in itsourcecode Society Management
CVE-2026-3409 (A security flaw has been discovered in eosphoros-ai db-gpt 0.7.5. Affe ...)
NOT-FOR-US: eosphoros-ai db-gpt
CVE-2026-3408 (A vulnerability was identified in Open Babel up to 3.1.1. This impacts ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1129566)
[trixie] - openbabel <no-dsa> (Minor issue)
[bookworm] - openbabel <no-dsa> (Minor issue)
@@ -60733,6 +60734,7 @@ CVE-2026-2709 (A flaw has been found in busy up to 2.5.5. The affected element i
CVE-2026-2706 (A flaw has been found in code-projects Patient Record Management Syste ...)
NOT-FOR-US: code-projects
CVE-2026-2705 (A vulnerability was detected in Open Babel up to 3.1.1. The impacted e ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1129566)
[trixie] - openbabel <no-dsa> (Minor issue)
[bookworm] - openbabel <no-dsa> (Minor issue)
@@ -60741,6 +60743,7 @@ CVE-2026-2705 (A vulnerability was detected in Open Babel up to 3.1.1. The impac
NOTE: https://github.com/openbabel/openbabel/pull/2862
NOTE: Fixed by: https://github.com/openbabel/openbabel/commit/e23a224b8fd9d7c2a7cde9ef4ec6afb4c05aa08a
CVE-2026-2704 (A security vulnerability has been detected in Open Babel up to 3.1.1. ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1129566)
[trixie] - openbabel <no-dsa> (Minor issue)
[bookworm] - openbabel <no-dsa> (Minor issue)
@@ -116554,42 +116557,49 @@ CVE-2025-1396 (A username enumeration vulnerability exists in multiple WSO2 prod
CVE-2025-11005 (Improper Neutralization of Special Elements used in an OS Command ('OS ...)
NOT-FOR-US: Palo Alto Networks
CVE-2025-11000 (A vulnerability was determined in Open Babel up to 3.1.1. This affects ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1116462)
[trixie] - openbabel <no-dsa> (Minor issue)
[bookworm] - openbabel <no-dsa> (Minor issue)
[bullseye] - openbabel <postponed> (Minor issue; can only be performed from a local environment)
NOTE: https://github.com/openbabel/openbabel/issues/2826
CVE-2025-10999 (A vulnerability was found in Open Babel up to 3.1.1. The impacted elem ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1116462)
[trixie] - openbabel <no-dsa> (Minor issue)
[bookworm] - openbabel <no-dsa> (Minor issue)
[bullseye] - openbabel <postponed> (Minor issue; can only be performed from a local environment)
NOTE: https://github.com/openbabel/openbabel/issues/2827
CVE-2025-10998 (A vulnerability has been found in Open Babel up to 3.1.1. The affected ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1116462)
[trixie] - openbabel <no-dsa> (Minor issue)
[bookworm] - openbabel <no-dsa> (Minor issue)
[bullseye] - openbabel <postponed> (Minor issue; can only be performed from a local environment)
NOTE: https://github.com/openbabel/openbabel/issues/2829
CVE-2025-10997 (A flaw has been found in Open Babel up to 3.1.1. Impacted is the funct ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1116462)
[trixie] - openbabel <no-dsa> (Minor issue)
[bookworm] - openbabel <no-dsa> (Minor issue)
[bullseye] - openbabel <postponed> (Minor issue; can only be performed from a local environment)
NOTE: https://github.com/openbabel/openbabel/issues/2830
CVE-2025-10996 (A vulnerability was detected in Open Babel up to 3.1.1. This issue aff ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1116462)
[trixie] - openbabel <no-dsa> (Minor issue)
[bookworm] - openbabel <no-dsa> (Minor issue)
[bullseye] - openbabel <postponed> (Minor issue; can only be performed from a local environment)
NOTE: https://github.com/openbabel/openbabel/issues/2831
CVE-2025-10995 (A security vulnerability has been detected in Open Babel up to 3.1.1. ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
[trixie] - openbabel <no-dsa> (Minor issue)
[bookworm] - openbabel <no-dsa> (Minor issue)
- openbabel <unfixed> (bug #1116462)
[bullseye] - openbabel <postponed> (Minor issue; can only be performed from a local environment)
NOTE: https://github.com/openbabel/openbabel/issues/2832
CVE-2025-10994 (A weakness has been identified in Open Babel up to 3.1.1. This affects ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1116462)
[trixie] - openbabel <no-dsa> (Minor issue)
[bookworm] - openbabel <no-dsa> (Minor issue)
@@ -378024,6 +378034,7 @@ CVE-2022-46305 (ChangingTec ServiSign component has a path traversal vulnerabili
CVE-2022-46304 (ChangingTec ServiSign component has insufficient filtering for special ...)
NOT-FOR-US: ChangingTec ServiSign
CVE-2022-46295 (Multiple out-of-bounds write vulnerabilities exist in the translationV ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
@@ -378032,6 +378043,7 @@ CVE-2022-46295 (Multiple out-of-bounds write vulnerabilities exist in the transl
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2022-1666
NOTE: https://github.com/openbabel/openbabel/issues/2650
CVE-2022-46294 (Multiple out-of-bounds write vulnerabilities exist in the translationV ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
@@ -378040,6 +378052,7 @@ CVE-2022-46294 (Multiple out-of-bounds write vulnerabilities exist in the transl
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2022-1666
NOTE: https://github.com/openbabel/openbabel/issues/2650
CVE-2022-46293 (Multiple out-of-bounds write vulnerabilities exist in the translationV ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
@@ -378048,6 +378061,7 @@ CVE-2022-46293 (Multiple out-of-bounds write vulnerabilities exist in the transl
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2022-1666
NOTE: https://github.com/openbabel/openbabel/issues/2650
CVE-2022-46292 (Multiple out-of-bounds write vulnerabilities exist in the translationV ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
@@ -378056,6 +378070,7 @@ CVE-2022-46292 (Multiple out-of-bounds write vulnerabilities exist in the transl
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2022-1666
NOTE: https://github.com/openbabel/openbabel/issues/2650
CVE-2022-46291 (Multiple out-of-bounds write vulnerabilities exist in the translationV ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
@@ -378064,6 +378079,7 @@ CVE-2022-46291 (Multiple out-of-bounds write vulnerabilities exist in the transl
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2022-1666
NOTE: https://github.com/openbabel/openbabel/issues/2650
CVE-2022-46290 (Multiple out-of-bounds write vulnerabilities exist in the ORCA format ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
@@ -378072,6 +378088,7 @@ CVE-2022-46290 (Multiple out-of-bounds write vulnerabilities exist in the ORCA f
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2022-1665
NOTE: https://github.com/openbabel/openbabel/issues/2650
CVE-2022-46289 (Multiple out-of-bounds write vulnerabilities exist in the ORCA format ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
@@ -378080,6 +378097,7 @@ CVE-2022-46289 (Multiple out-of-bounds write vulnerabilities exist in the ORCA f
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2022-1665
NOTE: https://github.com/openbabel/openbabel/issues/2650
CVE-2022-46280 (A use of uninitialized pointer vulnerability exists in the PQS format ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
@@ -378124,6 +378142,7 @@ CVE-2022-44615
CVE-2022-44453
RESERVED
CVE-2022-44451 (A use of uninitialized pointer vulnerability exists in the MSI format ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
@@ -378138,6 +378157,7 @@ CVE-2022-43663 (An integer conversion vulnerability exists in the SORBAx64.dll R
CVE-2022-43503
REJECTED
CVE-2022-43467 (An out-of-bounds write vulnerability exists in the PQS format coord_fi ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
@@ -378146,6 +378166,7 @@ CVE-2022-43467 (An out-of-bounds write vulnerability exists in the PQS format co
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2022-1671
NOTE: https://github.com/openbabel/openbabel/issues/2650
CVE-2022-42885 (A use of uninitialized pointer vulnerability exists in the GRO format ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
@@ -378234,6 +378255,7 @@ CVE-2022-4180 (Use after free in Mojo in Google Chrome prior to 108.0.5359.71 al
CVE-2022-41795
RESERVED
CVE-2022-41793 (An out-of-bounds write vulnerability exists in the CSR format title fu ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
@@ -378279,6 +378301,7 @@ CVE-2022-4172 (An integer overflow and buffer overflow issues were found in the
CVE-2022-40973
RESERVED
CVE-2022-37331 (An out-of-bounds write vulnerability exists in the Gaussian format ori ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
@@ -388540,6 +388563,7 @@ CVE-2022-3649 (A vulnerability was found in Linux Kernel. It has been classified
[bullseye] - linux 5.10.148-1
NOTE: https://git.kernel.org/linus/d325dc6eb763c10f591c239550b8c7e5466a5d09
CVE-2022-43607 (An out-of-bounds write vulnerability exists in the MOL2 format attribu ...)
+ [experimental] - openbabel 3.2.0+dfsg-1~exp
- openbabel <unfixed> (bug #1059277)
[trixie] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - openbabel <postponed> (Minor issue, revisit when fixed upstream)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6f20c32d1d98acfe8ab68737a144591f10ac9c9f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6f20c32d1d98acfe8ab68737a144591f10ac9c9f
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260605/25bcb23a/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list