CVS commit: pkgsrc/doc

["Leonardo Taccari" <leot%netbsd.org@localhost>]

Module Name:    pkgsrc
Committed By:   leot
Date:           Sun Jun 29 09:16:45 UTC 2025

Modified Files:
        pkgsrc/doc: pkg-vulnerabilities

Log Message:
pkg-vulnerabilities: Add recent CVEs

+ hdf5 (all of them not fixed yet, but they were reported upstream)


To generate a diff of this commit:
cvs rdiff -u -r1.449 -r1.450 pkgsrc/doc/pkg-vulnerabilities

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/doc/pkg-vulnerabilities
diff -u pkgsrc/doc/pkg-vulnerabilities:1.449 pkgsrc/doc/pkg-vulnerabilities:1.450
--- pkgsrc/doc/pkg-vulnerabilities:1.449        Fri Jun 27 14:29:18 2025
+++ pkgsrc/doc/pkg-vulnerabilities      Sun Jun 29 09:16:45 2025
@@ -1,4 +1,4 @@
-# $NetBSD: pkg-vulnerabilities,v 1.449 2025/06/27 14:29:18 leot Exp $
+# $NetBSD: pkg-vulnerabilities,v 1.450 2025/06/29 09:16:45 leot Exp $
 #
 #FORMAT 1.0.0
 #
@@ -27043,4 +27043,7 @@ mongodb<6.0.21  denial-of-service       https:/
 cpp-httplib<0.22.0     denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2025-52887
 py{39,310,311,312,313}-matplotlib<1.5.0        buffer-overflow https://nvd.nist.gov/vuln/detail/CVE-2013-1424
 git-annex<5.20140919   sensitive-information-disclosure        https://nvd.nist.gov/vuln/detail/CVE-2014-6274
-hdf5-[0-9]*    heap-overflow   https://nvd.nist.gov/vuln/detail/CVE-2025-6750
+hdf5-[0-9]*    heap-overflow           https://nvd.nist.gov/vuln/detail/CVE-2025-6750
+hdf5-[0-9]*    heap-overflow           https://nvd.nist.gov/vuln/detail/CVE-2025-6816
+hdf5-[0-9]*    denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2025-6817
+hdf5-[0-9]*    heap-overflow           https://nvd.nist.gov/vuln/detail/CVE-2025-6818