[Git][security-tracker-team/security-tracker][master] Process two virtuoso-opensource issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Jun 29 07:03:33 BST 2026



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5401adf2 by Salvatore Bonaccorso at 2026-06-29T08:03:09+02:00
Process two virtuoso-opensource issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5108,9 +5108,13 @@ CVE-2025-61021 (An issue in the sqlo_natural_join_cond component of openlink vir
 CVE-2025-61020 (An issue in the sqlo_strip_in_join component of openlink virtuoso-open ...)
 	TODO: check
 CVE-2025-61019 (An issue in the sqlo_key_part_best component of openlink virtuoso-open ...)
-	TODO: check
+	- virtuoso-opensource 7.2.12+dfsg-0.2
+	NOTE: https://github.com/openlink/virtuoso-opensource/issues/1222
+	NOTE: Fixed by: https://github.com/openlink/virtuoso-opensource/commit/dbca721f1d4e55531c4206b7b29dbe4d34138049 (v7.2.12)
 CVE-2025-61018 (An issue in the sqlo_place_dt_set component of openlink virtuoso-opens ...)
-	TODO: check
+	- virtuoso-opensource 7.2.12+dfsg-0.2
+	NOTE: https://github.com/openlink/virtuoso-opensource/issues/1224
+	NOTE: Fixed by: https://github.com/openlink/virtuoso-opensource/commit/1943d722383d641689fa3cf7829cd4a49237c0eb (v7.2.12)
 CVE-2025-55639 (GPAC MP4Box v2.4 was discovered to contain a NULL pointer dereference  ...)
 	- gpac <removed>
 	[bullseye] - gpac <end-of-life> (EOL in bullseye LTS)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5401adf237dc9b0b43844e117f286765ad1a3f76

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5401adf237dc9b0b43844e117f286765ad1a3f76
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260629/cbc08163/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list