[Git][security-tracker-team/security-tracker][master] CVE-2025-0634,CVE-2025-53074,CVE-2025-53075/rlottie: follow bookworm triage for bullseye

Fri, 18 Jul 2025 09:02:46 -0700 


Sylvain Beucler pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
d9ad1d4b by Sylvain Beucler at 2025-07-18T18:02:15+02:00
CVE-2025-0634,CVE-2025-53074,CVE-2025-53075/rlottie: follow bookworm triage for 
bullseye

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5825,11 +5825,13 @@ CVE-2025-53076 (Improper Input Validation vulnerability 
in Samsung Open Source r
 CVE-2025-53075 (Improper Input Validation vulnerability in Samsung Open Source 
rLottie ...)
        - rlottie <unfixed> (bug #1109341)
        [bookworm] - rlottie <no-dsa> (Minor issue)
+       [bullseye] - rlottie <postponed> (Minor issue)
        NOTE: https://github.com/Samsung/rlottie/pull/571
        NOTE: 
https://github.com/Samsung/rlottie/commit/507ea027e47d3e1dc7ddbd9994621215eae7ebb9
 CVE-2025-53074 (Out-of-bounds Read vulnerability in Samsung Open Source 
rLottie allows ...)
        - rlottie <unfixed> (bug #1109341)
        [bookworm] - rlottie <no-dsa> (Minor issue)
+       [bullseye] - rlottie <postponed> (Minor issue)
        NOTE: https://github.com/Samsung/rlottie/pull/571
        NOTE: 
https://github.com/Samsung/rlottie/commit/507ea027e47d3e1dc7ddbd9994621215eae7ebb9
 CVE-2025-46014 (Several services in Honor Device Co., Ltd Honor PC Manager 
v16.0.0.118 ...)
@@ -5857,6 +5859,7 @@ CVE-2025-38087 (In the Linux kernel, the following 
vulnerability has been resolv
 CVE-2025-0634 (Use After Free vulnerability in Samsung Open Source rLottie 
allows Rem ...)
        - rlottie <unfixed> (bug #1109341)
        [bookworm] - rlottie <no-dsa> (Minor issue)
+       [bullseye] - rlottie <postponed> (Minor issue)
        NOTE: https://github.com/Samsung/rlottie/pull/571
        NOTE: 
https://github.com/Samsung/rlottie/commit/507ea027e47d3e1dc7ddbd9994621215eae7ebb9
 CVE-2015-20112 (RLPx 5 has two CTR streams based on the same key, IV, and 
nonce. This  ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d9ad1d4ba2f201db323558423479de003ba8d1d0

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d9ad1d4ba2f201db323558423479de003ba8d1d0
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to