[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for assimp issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Jun 13 12:42:40 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
615139df by Salvatore Bonaccorso at 2026-06-13T13:42:00+02:00
Add Debian bug reference for assimp issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -8823,31 +8823,31 @@ CVE-2026-10235 (A flaw has been found in CodeAstro Ingredients Stock Management
CVE-2026-10234 (A vulnerability was detected in Mettle sendportal up to 3.0.1. This af ...)
NOT-FOR-US: Mettle sendportal
CVE-2026-10233 (A security vulnerability has been detected in Assimp up to 6.0.4. Affe ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - assimp <postponed> (Minor issue, revisit when fixed upstream)
[bullseye] - assimp <postponed> (Minor issue, revisit when fixed upstream)
NOTE: https://github.com/assimp/assimp/issues/6619
CVE-2026-10232 (A weakness has been identified in Assimp up to 6.0.4. Affected by this ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - assimp <postponed> (Minor issue, revisit when fixed upstream)
[bullseye] - assimp <postponed> (Minor issue, revisit when fixed upstream)
NOTE: https://github.com/assimp/assimp/issues/6617
CVE-2026-10231 (A security flaw has been discovered in Assimp up to 6.0.4. Affected is ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - assimp <postponed> (Minor issue, revisit when fixed upstream)
[bullseye] - assimp <postponed> (Minor issue, revisit when fixed upstream)
NOTE: https://github.com/assimp/assimp/issues/6616
CVE-2026-10230 (A vulnerability was identified in Assimp up to 6.0.4. This impacts the ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - assimp <postponed> (Minor issue, revisit when fixed upstream)
[bullseye] - assimp <postponed> (Minor issue, revisit when fixed upstream)
NOTE: https://github.com/assimp/assimp/issues/6615
CVE-2026-10229 (A vulnerability was determined in Assimp up to 6.0.4. This affects the ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - assimp <postponed> (Minor issue, revisit when fixed upstream)
[bullseye] - assimp <postponed> (Minor issue, revisit when fixed upstream)
@@ -8905,19 +8905,19 @@ CVE-2026-10203 (A security flaw has been discovered in OFCMS 1.1.3. Impacted is
CVE-2026-10202 (A vulnerability was identified in OFCMS 1.1.3. This issue affects the ...)
NOT-FOR-US: OFCMS
CVE-2026-10201 (A vulnerability was determined in Assimp up to 6.0.4. This vulnerabili ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - assimp <postponed> (Minor issue, revisit when fixed upstream)
[bullseye] - assimp <postponed> (Minor issue, revisit when fixed upstream)
NOTE: https://github.com/assimp/assimp/issues/6613
CVE-2026-10200 (A vulnerability was found in Assimp up to 6.0.4. This affects the func ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - assimp <postponed> (Minor issue, revisit when fixed upstream)
[bullseye] - assimp <postponed> (Minor issue, revisit when fixed upstream)
NOTE: https://github.com/assimp/assimp/issues/6612
CVE-2026-10199 (A vulnerability has been found in Assimp up to 6.0.4. Affected by this ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <no-dsa> (Minor issue)
[bookworm] - assimp <no-dsa> (Minor issue)
[bullseye] - assimp <postponed> (Minor issue)
@@ -8925,13 +8925,13 @@ CVE-2026-10199 (A vulnerability has been found in Assimp up to 6.0.4. Affected b
NOTE: https://github.com/assimp/assimp/pull/6646
NOTE: https://github.com/assimp/assimp/commit/d24b85319bd70c65883a2b96613e07e23fb95981
CVE-2026-10198 (A flaw has been found in Assimp up to 6.0.4. Affected by this vulnerab ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <postponed> (Minor issue, revisit when fixed upstream)
[bookworm] - assimp <postponed> (Minor issue, revisit when fixed upstream)
[bullseye] - assimp <postponed> (Minor issue, revisit when fixed upstream)
NOTE: https://github.com/assimp/assimp/issues/6609
CVE-2026-10197 (A vulnerability was detected in Assimp up to 6.0.4. Affected is the fu ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <no-dsa> (Minor issue)
[bookworm] - assimp <no-dsa> (Minor issue)
[bullseye] - assimp <postponed> (Minor issue)
@@ -28698,14 +28698,14 @@ CVE-2026-1921 (The Loco Translate plugin for WordPress is vulnerable to Path Tra
CVE-2026-0073 (In adbd_tls_verify_cert of auth.cpp, there is a possible bypass of wir ...)
NOT-FOR-US: Android
CVE-2025-70072 (An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <no-dsa> (Minor issue)
[bookworm] - assimp <no-dsa> (Minor issue)
[bullseye] - assimp <no-dsa> (Minor issue)
NOTE: https://gist.github.com/GunP4ng/cdaf0cb89dc6f1d09a9e88fa1135894e
NOTE: https://github.com/assimp/assimp/issues/6635
CVE-2025-70071 (An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <no-dsa> (Minor issue)
[bookworm] - assimp <no-dsa> (Minor issue)
[bullseye] - assimp <no-dsa> (Minor issue)
@@ -28740,19 +28740,19 @@ CVE-2026-43870 (Origin Validation Error, Improper Limitation of a Pathname to a
NOTE: https://www.openwall.com/lists/oss-security/2026/05/05/4
NOTE: nodejs bindings not built in Debian package
CVE-2025-70070 (An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <no-dsa> (Minor issue)
[bookworm] - assimp <no-dsa> (Minor issue)
[bullseye] - assimp <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2465295
CVE-2025-70069 (An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <no-dsa> (Minor issue)
[bookworm] - assimp <no-dsa> (Minor issue)
[bullseye] - assimp <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2465306
CVE-2025-70067 (Buffer Overflow vulnerability exists in Assimp versions up to 6.0.2 in ...)
- - assimp <unfixed>
+ - assimp <unfixed> (bug #1139916)
[trixie] - assimp <no-dsa> (Minor issue)
[bookworm] - assimp <no-dsa> (Minor issue)
[bullseye] - assimp <no-dsa> (Minor issue)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/615139df978e5fe5e13b6c135ba590820ca6c359
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/615139df978e5fe5e13b6c135ba590820ca6c359
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260613/ce4fcd3a/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list