Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d05abaac by Salvatore Bonaccorso at 2025-03-29T13:31:05+01:00
Mark fig2dev as no-dsa for bookworm
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -152,14 +152,17 @@ CVE-2025-31432 (Improper Control of Filename for
Include/Require Statement in PH
NOT-FOR-US: WordPress plugin
CVE-2025-31164 (heap-buffer overflow in fig2dev in version 3.2.9aallows an
attacker to ...)
- fig2dev 1:3.2.9a-2
+ [bookworm] - fig2dev <no-dsa> (Minor issue)
NOTE: https://sourceforge.net/p/mcj/tickets/184/
NOTE: Fixed by:
https://sourceforge.net/p/mcj/fig2dev/ci/ff9aba206a30288f456dfc91584a52ba9927b438/
CVE-2025-31163 (Segmentation fault in fig2dev in version 3.2.9aallows an
attacker to a ...)
- fig2dev 1:3.2.9a-2
+ [bookworm] - fig2dev <no-dsa> (Minor issue)
NOTE: https://sourceforge.net/p/mcj/tickets/186/
NOTE: Fixed by:
https://sourceforge.net/p/mcj/fig2dev/ci/c8a87d22036e62bac0c6f7836078d8103caa6457/
CVE-2025-31162 (Floating point exception in fig2dev in version 3.2.9aallows an
attacke ...)
- fig2dev 1:3.2.9a-2
+ [bookworm] - fig2dev <no-dsa> (Minor issue)
NOTE: https://sourceforge.net/p/mcj/tickets/185/
NOTE: Fixed by:
https://sourceforge.net/u/mcj/fig2dev/ci/da8992f44b84a337b4edaa67fc8b36b55eaef696/
CVE-2025-31102 (Improper Neutralization of Input During Web Page Generation
('Cross-si ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d05abaac1d1108a3690ba2277452d3290587eb73
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d05abaac1d1108a3690ba2277452d3290587eb73
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
