CVS commit: pkgsrc/doc

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/doc
From: "Leonardo Taccari" <leot%netbsd.org@localhost>
Date: Thu, 13 Nov 2025 09:29:16 +0000

Module Name:    pkgsrc
Committed By:   leot
Date:           Thu Nov 13 09:29:16 UTC 2025

Modified Files:
        pkgsrc/doc: pkg-vulnerabilities

Log Message:
pkg-vulnerabilities: add last 24 hours CVEs

+ anubis, chromium, cups-filters, libcupsfilters, duckdb,
  py-torch (not fixed)


To generate a diff of this commit:
cvs rdiff -u -r1.660 -r1.661 pkgsrc/doc/pkg-vulnerabilities

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/doc/pkg-vulnerabilities
diff -u pkgsrc/doc/pkg-vulnerabilities:1.660 pkgsrc/doc/pkg-vulnerabilities:1.661
--- pkgsrc/doc/pkg-vulnerabilities:1.660        Wed Nov 12 10:55:25 2025
+++ pkgsrc/doc/pkg-vulnerabilities      Thu Nov 13 09:29:16 2025
@@ -1,4 +1,4 @@
-# $NetBSD: pkg-vulnerabilities,v 1.660 2025/11/12 10:55:25 leot Exp $
+# $NetBSD: pkg-vulnerabilities,v 1.661 2025/11/13 09:29:16 leot Exp $
 #
 #FORMAT 1.0.0
 #
@@ -28896,3 +28896,11 @@ firefox<145            multiple-vulnerabilities        ht
 firefox140<140.5       multiple-vulnerabilities        https://www.mozilla.org/en-US/security/advisories/mfsa2025-88/
 firefox115<115.30      multiple-vulnerabilities        https://www.mozilla.org/en-US/security/advisories/mfsa2025-89/
 libvirt-[0-9]* denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2025-12748
+anubis<1.23.0          input-validation        https://nvd.nist.gov/vuln/detail/CVE-2025-64716
+chromium<142.0.7444.166        memory-corruption       https://nvd.nist.gov/vuln/detail/CVE-2025-13042
+cups-filters<1.28.17   out-of-bounds-write     https://nvd.nist.gov/vuln/detail/CVE-2025-57812
+libcupsfilters<2.1.1   out-of-bounds-write     https://nvd.nist.gov/vuln/detail/CVE-2025-57812
+cups-filters<2.1.2     out-of-bounds-write     https://nvd.nist.gov/vuln/detail/CVE-2025-64503
+libcupsfilters<1.28.18 out-of-bounds-write     https://nvd.nist.gov/vuln/detail/CVE-2025-64503
+duckdb<1.4.2           insecure-key-generation https://nvd.nist.gov/vuln/detail/CVE-2025-64429
+py{27,39,310,311,312,313,314}-torch-[0-9]*     denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2025-63396

Prev by Date: CVS commit: pkgsrc/doc
Next by Date: CVS commit: pkgsrc/net/py-ncclient
Previous by Thread: CVS commit: pkgsrc/doc
Next by Thread: CVS commit: pkgsrc/net/py-ncclient
Indexes:

Home | Main Index | Thread Index | Old Index