Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6e5113a1 by Salvatore Bonaccorso at 2025-12-03T09:55:01+01:00
Add CVE-2025-65955/imagemagick
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,7 +1,11 @@
CVE-2025-12548
NOT-FOR-US: Eclipse Che
CVE-2025-65955 (ImageMagick is free and open-source software used for editing
and mani ...)
- TODO: check
+ - imagemagick <unfixed>
+ NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-q3hc-j9x5-mp9m
+ NOTE: Introduced with:
https://github.com/ImageMagick/ImageMagick/commit/6409f34d637a34a1c643632aa849371ec8b3b5a8
(7.0.1-0)
+ NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/6f81eb15f822ad86e8255be75efad6f9762c32f8
(7.1.2-9)
+ NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick6/commit/7d4c27fd4cb2a716a9c1d3346a5e79a692cfe6d8
(6.9.13-34)
CVE-2025-65657 (FeehiCMS version 2.1.1 has a Remote Code Execution via
Unrestricted Fi ...)
NOT-FOR-US: FeehiCMS
CVE-2025-65380 (PHPGurukul Billing System 1.0 is vulnerable to SQL Injection
in the ad ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6e5113a19c1060e112d847595167fe3f46aa9060
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6e5113a19c1060e112d847595167fe3f46aa9060
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
