Adrian Bunk pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
bf6e5037 by Adrian Bunk at 2025-08-04T06:32:15+03:00
Reserve DLA-4264-1 for exempi
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -328052,33 +328052,28 @@ CVE-2021-42533 (Adobe Bridge version 11.1.1 (and
earlier) is affected by a doubl
CVE-2021-42532 (XMP Toolkit SDK version 2021.07 (and earlier) is affected by a
stack-b ...)
{DLA-3585-1}
- exempi 2.6.0-1
- [bullseye] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-108.html
NOTE:
https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
CVE-2021-42531 (XMP Toolkit SDK version 2021.07 (and earlier) is affected by a
stack-b ...)
{DLA-3585-1}
- exempi 2.6.0-1
- [bullseye] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-108.html
NOTE:
https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
CVE-2021-42530 (XMP Toolkit SDK version 2021.07 (and earlier) is affected by a
stack-b ...)
{DLA-3585-1}
- exempi 2.6.0-1
- [bullseye] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-108.html
NOTE:
https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
CVE-2021-42529 (XMP Toolkit SDK version 2021.07 (and earlier) is affected by a
stack-b ...)
{DLA-3585-1}
- exempi 2.6.0-1
- [bullseye] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-108.html
NOTE:
https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE:
https://github.com/adobe/XMP-Toolkit-SDK/compare/v2021.07...v2021.08
CVE-2021-42528 (XMP Toolkit 2021.07 (and earlier) is affected by a Null
pointer derefe ...)
{DLA-3585-1}
- exempi 2.6.0-1
- [bullseye] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-108.html
NOTE:
https://github.com/adobe/XMP-Toolkit-SDK/commit/16e53564ae6c2689387479c04770f492075d5b7b
(v2021.08)
NOTE:
https://cgit.freedesktop.org/exempi/commit/?h=adobe-sdk&id=16e53564ae6c2689387479c04770f492075d5b7b
(2.6.0)
@@ -333955,7 +333950,6 @@ CVE-2021-40733 (Adobe Animate version 21.0.9 (and
earlier) is affected by a memo
CVE-2021-40732 (XMP Toolkit version 2020.1 (and earlier) is affected by a null
pointer ...)
{DLA-3585-1}
- exempi 2.6.0-1
- [bullseye] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-85.html
NOTE:
https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
@@ -333992,7 +333986,6 @@ CVE-2021-40717
CVE-2021-40716 (XMP Toolkit SDK versions 2021.07 (and earlier) are affected by
an out- ...)
{DLA-3585-1}
- exempi 2.6.0-1
- [bullseye] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-85.html
NOTE:
https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
@@ -336292,7 +336285,6 @@ CVE-2021-39848
CVE-2021-39847 (XMP Toolkit SDK version 2020.1 (and earlier) is affected by a
stack-ba ...)
{DLA-3585-1}
- exempi 2.6.0-1
- [bullseye] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE:
https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
@@ -345958,7 +345950,6 @@ CVE-2021-36065 (Adobe Photoshop versions 21.2.10 (and
earlier) and 22.4.3 (and e
CVE-2021-36064 (XMP Toolkit version 2020.1 (and earlier) is affected by a
Buffer Under ...)
{DLA-3585-1}
- exempi 2.6.0-1
- [bullseye] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE:
https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
@@ -345975,63 +345966,54 @@ CVE-2021-36059 (Adobe Bridge version 11.1 (and
earlier) is affected by a memory
CVE-2021-36058 (XMP Toolkit SDK version 2020.1 (and earlier) is affected by an
Integer ...)
{DLA-3585-1}
- exempi 2.6.0-1
- [bullseye] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE:
https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
CVE-2021-36057 (XMP Toolkit SDK version 2020.1 (and earlier) is affected by a
write-wh ...)
{DLA-3585-1}
- exempi 2.6.0-1
- [bullseye] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE:
https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
CVE-2021-36056 (XMP Toolkit SDK version 2020.1 (and earlier) is affected by a
buffer o ...)
{DLA-3585-1}
- exempi 2.6.0-1
- [bullseye] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE:
https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
CVE-2021-36055 (XMP Toolkit SDK versions 2020.1 (and earlier) are affected by
a use-af ...)
{DLA-3585-1}
- exempi 2.6.0-1
- [bullseye] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE:
https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
CVE-2021-36054 (XMP Toolkit SDK version 2020.1 (and earlier) is affected by a
buffer o ...)
{DLA-3585-1}
- exempi 2.6.0-1
- [bullseye] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE:
https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
CVE-2021-36053 (XMP Toolkit SDK versions 2020.1 (and earlier) are affected by
an out-o ...)
{DLA-3585-1}
- exempi 2.6.0-1
- [bullseye] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE:
https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
CVE-2021-36052 (XMP Toolkit version 2020.1 (and earlier) is affected by a
memory corru ...)
{DLA-3585-1}
- exempi 2.6.0-1
- [bullseye] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE:
https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
CVE-2021-36051 (XMP Toolkit SDK version 2020.1 (and earlier) is affected by a
buffer o ...)
{DLA-3585-1}
- exempi 2.6.0-1
- [bullseye] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE:
https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
CVE-2021-36050 (XMP Toolkit SDK version 2020.1 (and earlier) is affected by a
buffer o ...)
{DLA-3585-1}
- exempi 2.6.0-1
- [bullseye] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE:
https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
@@ -346040,28 +346022,24 @@ CVE-2021-36049 (Adobe Bridge version 11.1 (and
earlier) is affected by a memory
CVE-2021-36048 (XMP Toolkit SDK version 2020.1 (and earlier) is affected by an
Imprope ...)
{DLA-3585-1}
- exempi 2.6.0-1
- [bullseye] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE:
https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
CVE-2021-36047 (XMP Toolkit SDK version 2020.1 (and earlier) is affected by an
Imprope ...)
{DLA-3585-1}
- exempi 2.6.0-1
- [bullseye] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE:
https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
CVE-2021-36046 (XMP Toolkit version 2020.1 (and earlier) is affected by a
memory corru ...)
{DLA-3585-1}
- exempi 2.6.0-1
- [bullseye] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE:
https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
CVE-2021-36045 (XMP Toolkit SDK versions 2020.1 (and earlier) are affected by
an out-o ...)
{DLA-3585-1}
- exempi 2.6.0-1
- [bullseye] - exempi <no-dsa> (Minor issue)
NOTE: https://helpx.adobe.com/security/products/xmpcore/apsb21-65.html
NOTE:
https://cgit.freedesktop.org/exempi/commit/?h=2.6.0&id=77a3fe7096f8ebf301e2bfe1e6dc023b4ff6dc48
NOTE: https://gitlab.freedesktop.org/libopenraw/exempi/-/releases
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[04 Aug 2025] DLA-4264-1 exempi - security update
+ {CVE-2021-36045 CVE-2021-36046 CVE-2021-36047 CVE-2021-36048
CVE-2021-36050 CVE-2021-36051 CVE-2021-36052 CVE-2021-36053 CVE-2021-36054
CVE-2021-36055 CVE-2021-36056 CVE-2021-36057 CVE-2021-36058 CVE-2021-36064
CVE-2021-39847 CVE-2021-40716 CVE-2021-40732 CVE-2021-42528 CVE-2021-42529
CVE-2021-42530 CVE-2021-42531 CVE-2021-42532}
+ [bullseye] - exempi 2.5.2-1+deb11u1
[04 Aug 2025] DLA-4263-1 ruby-graphql - security update
{CVE-2025-27407}
[bullseye] - ruby-graphql 1.11.12-0+deb11u1
=====================================
data/dla-needed.txt
=====================================
@@ -85,10 +85,6 @@ erlang
NOTE: 20250710: Added by Front-Desk (apo)
NOTE: 20250719: SPU in progress https://bugs.debian.org/1105009
(Beuc/front-desk)
--
-exempi (bunk)
- NOTE: 20250718: Added by Front-Desk (Beuc)
- NOTE: 20250718: Follow DLA-3585-1 for buster (24 CVEs) (Beuc/front-desk)
---
fastdds
NOTE: 20250303: Added by Front-Desk (rouca)
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bf6e5037e947e93dc876e53f7b21b50a7613a4f0
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bf6e5037e947e93dc876e53f7b21b50a7613a4f0
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
