pkgsrc-Changes archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
CVS commit: pkgsrc/doc
Module Name: pkgsrc
Committed By: leot
Date: Wed Oct 1 19:56:02 UTC 2025
Modified Files:
pkgsrc/doc: pkg-vulnerabilities
Log Message:
pkg-vulnerabilities: add (other part of) last weeks CVEs
+ go, jenkins,
libsoup (not fixed),
libvips,
libxslt (possible patch proposed, still not merged),
mapserver, mupdf,
openbabel (issues closed but seems not fixed, no ACK from upstream too),
opengrok
To generate a diff of this commit:
cvs rdiff -u -r1.564 -r1.565 pkgsrc/doc/pkg-vulnerabilities
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Modified files:
Index: pkgsrc/doc/pkg-vulnerabilities
diff -u pkgsrc/doc/pkg-vulnerabilities:1.564 pkgsrc/doc/pkg-vulnerabilities:1.565
--- pkgsrc/doc/pkg-vulnerabilities:1.564 Wed Oct 1 19:32:17 2025
+++ pkgsrc/doc/pkg-vulnerabilities Wed Oct 1 19:56:01 2025
@@ -1,4 +1,4 @@
-# $NetBSD: pkg-vulnerabilities,v 1.564 2025/10/01 19:32:17 leot Exp $
+# $NetBSD: pkg-vulnerabilities,v 1.565 2025/10/01 19:56:01 leot Exp $
#
#FORMAT 1.0.0
#
@@ -27640,3 +27640,23 @@ ghostscript-gpl-[0-9]* integer-overflow
ghostscript-agpl<10.06.0 integer-overflow https://nvd.nist.gov/vuln/detail/CVE-2025-59800
glib-networking-[0-9]* out-of-bounds-read https://nvd.nist.gov/vuln/detail/CVE-2025-60018
glib-networking-[0-9]* out-of-bounds-write https://nvd.nist.gov/vuln/detail/CVE-2025-60019
+go123<1.23.12 invalid-validation https://nvd.nist.gov/vuln/detail/CVE-2025-47906
+go124<1.24.6 invalid-validation https://nvd.nist.gov/vuln/detail/CVE-2025-47906
+go123<1.23.12 race-condition https://nvd.nist.gov/vuln/detail/CVE-2025-47910
+go124<1.24.6 race-condition https://nvd.nist.gov/vuln/detail/CVE-2025-47910
+jenkins<2.516.2 access-control-bypass https://nvd.nist.gov/vuln/detail/CVE-2025-59474
+jenkins<2.516.2 access-control-bypass https://nvd.nist.gov/vuln/detail/CVE-2025-59475
+jenkins<2.516.2 log-injection https://nvd.nist.gov/vuln/detail/CVE-2025-59476
+libsoup-[0-9]* out-of-bounds-read https://nvd.nist.gov/vuln/detail/CVE-2025-11021
+libvips<8.17.2 buffer-overflow https://nvd.nist.gov/vuln/detail/CVE-2025-59933
+libxslt-[0-9]* use-after-free https://nvd.nist.gov/vuln/detail/CVE-2025-10911
+mapserver<8.4.1 sql-injection https://nvd.nist.gov/vuln/detail/CVE-2025-59431
+mupdf<1.27.0 null-pointer-dereference https://nvd.nist.gov/vuln/detail/CVE-2025-55780
+openbabel-[0-9]* use-after-free https://nvd.nist.gov/vuln/detail/CVE-2025-10994
+openbabel-[0-9]* out-of-bounds-write https://nvd.nist.gov/vuln/detail/CVE-2025-10995
+openbabel-[0-9]* heap-overflow https://nvd.nist.gov/vuln/detail/CVE-2025-10996
+openbabel-[0-9]* heap-overflow https://nvd.nist.gov/vuln/detail/CVE-2025-10997
+openbabel-[0-9]* null-pointer-dereference https://nvd.nist.gov/vuln/detail/CVE-2025-10998
+openbabel-[0-9]* null-pointer-dereference https://nvd.nist.gov/vuln/detail/CVE-2025-10999
+openbabel-[0-9]* null-pointer-dereference https://nvd.nist.gov/vuln/detail/CVE-2025-11000
+opengrok<1.14.2 cross-site-scripting https://nvd.nist.gov/vuln/detail/CVE-2025-30755
Home |
Main Index |
Thread Index |
Old Index