[Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2025-59160 as EOL for Bullseye

Wed, 17 Sep 2025 16:30:19 -0700 


Thorsten Alteholz pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
f5a277ed by Thorsten Alteholz at 2025-09-17T16:20:45+02:00
mark CVE-2025-59160 as EOL for Bullseye

- - - - -
88980477 by Thorsten Alteholz at 2025-09-17T16:23:43+02:00
mark CVE-2024-44905 as postponed for Bullseye

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -120,6 +120,7 @@ CVE-2025-59161 (Element Web is a Matrix web client built 
using the Matrix React
        - element-web <itp> (bug #866502)
 CVE-2025-59160 (Matrix JavaScript SDK is a Matrix Client-Server SDK for 
JavaScript and ...)
        - node-matrix-js-sdk <removed>
+       [bullseye] - node-matrix-js-sdk <end-of-life> (see #1094651)
 CVE-2025-59050 (Greenshot is an open source Windows screenshot utility. 
Greenshot 1.3. ...)
        NOT-FOR-US: Greenshot
 CVE-2025-58749 (WebAssembly Micro Runtime (WAMR) is a lightweight standalone 
WebAssemb ...)
@@ -30717,6 +30718,7 @@ CVE-2024-44905 (go-pg pg v10.13.0 was discovered to 
contain a SQL injection vuln
        - golang-gopkg-pg.v5 <unfixed> (bug #1111939)
        [trixie] - golang-gopkg-pg.v5 <no-dsa> (Minor issue)
        [bookworm] - golang-gopkg-pg.v5 <no-dsa> (Minor issue)
+       [bullseye] - golang-gopkg-pg.v5 <postponed> (Minor issue)
        NOTE: https://github.com/advisories/GHSA-6xp3-p59p-q4fj
        NOTE: Fixed by: 
https://github.com/go-pg/pg/commit/eff50a43724e52347559687a6945c116afbb41c1 
(v10.15.0)
 CVE-2023-45256 (Multiple SQL injection vulnerabilities in the EuroInformation 
Monetico ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/559ce5e0c2f78ef879ff3996f35ebc6b10336731...889804776dccea8aa0303004e4ba3bf566c476b8

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/559ce5e0c2f78ef879ff3996f35ebc6b10336731...889804776dccea8aa0303004e4ba3bf566c476b8
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to