[Git][security-tracker-team/security-tracker][master] Add upstream tag for upstream fix for CVE-2025-63938
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Mar 9 07:25:18 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2e206442 by Salvatore Bonaccorso at 2026-03-09T08:24:36+01:00
Add upstream tag for upstream fix for CVE-2025-63938
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -42942,7 +42942,7 @@ CVE-2025-63938 (Tinyproxy through 1.11.2 contains an integer overflow vulnerabil
[bookworm] - tinyproxy <no-dsa> (Minor issue)
[bullseye] - tinyproxy <postponed> (Minor issue)
NOTE: https://github.com/tinyproxy/tinyproxy/issues/586
- NOTE: Fixed by: https://github.com/tinyproxy/tinyproxy/commit/3c0fde94981b025271ffa1788ae425257841bf5a
+ NOTE: Fixed by: https://github.com/tinyproxy/tinyproxy/commit/3c0fde94981b025271ffa1788ae425257841bf5a (1.11.3)
CVE-2025-62728 (SQL injection vulnerability in Hive Metastore Server (HMS) when proces ...)
NOT-FOR-US: Apache software not packaged in Debian
CVE-2025-62354 (Improper neutralization of special elements used in an OS command ('co ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2e206442a571113ca7288a4b4e3d0b98e68d9579
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2e206442a571113ca7288a4b4e3d0b98e68d9579
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260309/0bae8086/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list