Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6253f604 by Salvatore Bonaccorso at 2025-11-30T07:41:11+01:00
CVE-2025-66420/tryton-sao assigned
- - - - -
2 changed files:
- data/CVE/list
- data/DSA/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -11440,10 +11440,8 @@ CVE-2020-36855 (A security vulnerability has been
detected in DCMTK up to 3.6.5.
{DLA-4363-1}
- dcmtk 3.6.6-1
NOTE: Fixed by:
https://github.com/DCMTK/dcmtk/commit/0fef9f02e7c3976c36826b272ed4929f3977c3db
(DCMTK-3.6.6)
-CVE-2025-XXXX [Stored XSS Vulnerability]
+CVE-2025-66420 [Stored XSS Vulnerability]
- tryton-sao 7.0.38+ds1-1
- [trixie] - tryton-sao 7.0.28+ds1-1+deb13u1
- [bookworm] - tryton-sao 6.0.28+ds1-2+deb12u1
NOTE: https://discuss.tryton.org/t/security-release-for-issue-14290/8895
NOTE: https://foss.heptapod.net/tryton/tryton/-/issues/14290
CVE-2025-9133 (A missing authorization vulnerability in Zyxel ATP series
firmware ver ...)
=====================================
data/DSA/list
=====================================
@@ -111,6 +111,7 @@
[bookworm] - python-internetarchive 3.3.0-2~deb12u1
[trixie] - python-internetarchive 5.4.0-2~deb13u1
[23 Oct 2025] DSA-6034-1 tryton-sao - security update
+ {CVE-2025-66420}
[bookworm] - tryton-sao 6.0.28+ds1-2+deb12u1
[trixie] - tryton-sao 7.0.28+ds1-1+deb13u1
[23 Oct 2025] DSA-6033-1 bind9 - security update
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6253f604249f0faa03c8098a5f0f06fe861603a2
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6253f604249f0faa03c8098a5f0f06fe861603a2
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
