github
diff --git a/‎advisories/github-reviewed/2024/06/GHSA-5357-c2jx-v7qh/GHSA-5357-c2jx-v7qh.json‎
Lines changed: 5 additions & 1 deletion b/‎advisories/github-reviewed/2024/06/GHSA-5357-c2jx-v7qh/GHSA-5357-c2jx-v7qh.json‎
Lines changed: 5 additions & 1 deletion
diff --git a/‎advisories/github-reviewed/2025/08/GHSA-p72g-pv48-7w9x/GHSA-p72g-pv48-7w9x.json‎
Lines changed: 5 additions & 1 deletion b/‎advisories/github-reviewed/2025/08/GHSA-p72g-pv48-7w9x/GHSA-p72g-pv48-7w9x.json‎
Lines changed: 5 additions & 1 deletion
diff --git a/‎advisories/github-reviewed/2025/08/GHSA-vf2r-cxg9-p7rf/GHSA-vf2r-cxg9-p7rf.json‎
Lines changed: 5 additions & 1 deletion b/‎advisories/github-reviewed/2025/08/GHSA-vf2r-cxg9-p7rf/GHSA-vf2r-cxg9-p7rf.json‎
Lines changed: 5 additions & 1 deletion
diff --git a/‎advisories/github-reviewed/2025/09/GHSA-4xh5-x5gv-qwph/GHSA-4xh5-x5gv-qwph.json‎
Lines changed: 5 additions & 1 deletion b/‎advisories/github-reviewed/2025/09/GHSA-4xh5-x5gv-qwph/GHSA-4xh5-x5gv-qwph.json‎
Lines changed: 5 additions & 1 deletion
diff --git a/‎advisories/github-reviewed/2025/09/GHSA-9ggr-2464-2j32/GHSA-9ggr-2464-2j32.json‎
Lines changed: 5 additions & 1 deletion b/‎advisories/github-reviewed/2025/09/GHSA-9ggr-2464-2j32/GHSA-9ggr-2464-2j32.json‎
Lines changed: 5 additions & 1 deletion
diff --git a/‎advisories/github-reviewed/2025/10/GHSA-9pp9-cfwx-54rm/GHSA-9pp9-cfwx-54rm.json‎
Lines changed: 5 additions & 1 deletion b/‎advisories/github-reviewed/2025/10/GHSA-9pp9-cfwx-54rm/GHSA-9pp9-cfwx-54rm.json‎
Lines changed: 5 additions & 1 deletion
diff --git a/‎advisories/github-reviewed/2025/10/GHSA-g7f3-828f-7h7m/GHSA-g7f3-828f-7h7m.json‎
Lines changed: 5 additions & 1 deletion b/‎advisories/github-reviewed/2025/10/GHSA-g7f3-828f-7h7m/GHSA-g7f3-828f-7h7m.json‎
Lines changed: 5 additions & 1 deletion
diff --git a/‎advisories/github-reviewed/2025/10/GHSA-pq5p-34cr-23v9/GHSA-pq5p-34cr-23v9.json‎
Lines changed: 5 additions & 1 deletion b/‎advisories/github-reviewed/2025/10/GHSA-pq5p-34cr-23v9/GHSA-pq5p-34cr-23v9.json‎
Lines changed: 5 additions & 1 deletion
diff --git a/‎advisories/unreviewed/2021/12/GHSA-g9gv-9646-jvp8/GHSA-g9gv-9646-jvp8.json‎
Lines changed: 19 additions & 2 deletions b/‎advisories/unreviewed/2021/12/GHSA-g9gv-9646-jvp8/GHSA-g9gv-9646-jvp8.json‎
Lines changed: 19 additions & 2 deletions
diff --git a/‎advisories/unreviewed/2022/02/GHSA-2259-5mcv-w35h/GHSA-2259-5mcv-w35h.json‎
Lines changed: 5 additions & 1 deletion b/‎advisories/unreviewed/2022/02/GHSA-2259-5mcv-w35h/GHSA-2259-5mcv-w35h.json‎
Lines changed: 5 additions & 1 deletion
@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-5357-c2jx-v7qh",
-  "modified": "2024-07-26T21:36:55Z",
+  "modified": "2025-11-03T18:31:14Z",
   "published": "2024-06-09T21:30:33Z",
   "aliases": [
     "CVE-2024-37568"
@@ -52,6 +52,10 @@
       "type": "WEB",
       "url": "https://github.com/pypa/advisory-database/tree/main/vulns/authlib/PYSEC-2024-52.yaml"
     },
+    {
+      "type": "WEB",
+      "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00032.html"
+    },
     {
       "type": "WEB",
       "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FHJI32SN4FNAUVNALVGOKWHNSQ6XS3M5"
 
@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-p72g-pv48-7w9x",
-  "modified": "2025-10-29T10:37:49Z",
+  "modified": "2025-11-03T18:31:34Z",
   "published": "2025-08-20T21:30:27Z",
   "aliases": [
     "CVE-2025-54988"
@@ -90,6 +90,10 @@
     {
       "type": "WEB",
       "url": "https://lists.apache.org/thread/stn9oh7rfn9yv76n1srxr9w56oy04p72"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00030.html"
     }
   ],
   "database_specific": {
 
@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-vf2r-cxg9-p7rf",
-  "modified": "2025-08-05T17:09:49Z",
+  "modified": "2025-11-03T18:31:33Z",
   "published": "2025-08-04T15:12:03Z",
   "aliases": [
     "CVE-2025-54119"
@@ -58,6 +58,10 @@
     {
       "type": "PACKAGE",
       "url": "https://github.com/ADOdb/ADOdb"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00020.html"
     }
   ],
   "database_specific": {
 
@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-4xh5-x5gv-qwph",
-  "modified": "2025-10-27T14:50:36Z",
+  "modified": "2025-11-03T18:31:43Z",
   "published": "2025-09-24T15:31:14Z",
   "aliases": [
     "CVE-2025-8869"
@@ -55,6 +55,10 @@
       "type": "PACKAGE",
       "url": "https://github.com/pypa/pip"
     },
+    {
+      "type": "WEB",
+      "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00028.html"
+    },
     {
       "type": "WEB",
       "url": "https://mail.python.org/archives/list/[email protected]/thread/IF5A3GCJY3VH7BVHJKOWOJFKTW7VFQEN"
 
@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-9ggr-2464-2j32",
-  "modified": "2025-09-22T20:08:32Z",
+  "modified": "2025-11-03T18:31:42Z",
   "published": "2025-09-22T14:42:12Z",
   "aliases": [
     "CVE-2025-59420"
@@ -51,6 +51,10 @@
     {
       "type": "PACKAGE",
       "url": "https://github.com/authlib/authlib"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00032.html"
     }
   ],
   "database_specific": {
 
@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-9pp9-cfwx-54rm",
-  "modified": "2025-10-28T14:43:21Z",
+  "modified": "2025-11-03T18:31:46Z",
   "published": "2025-10-28T14:43:20Z",
   "aliases": [
     "CVE-2025-62171"
@@ -150,6 +150,10 @@
     {
       "type": "WEB",
       "url": "https://github.com/dlemstra/Magick.NET/releases/tag/14.9.0"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00019.html"
     }
   ],
   "database_specific": {
 
@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-g7f3-828f-7h7m",
-  "modified": "2025-10-23T17:40:14Z",
+  "modified": "2025-11-03T18:31:46Z",
   "published": "2025-10-10T22:54:03Z",
   "aliases": [
     "CVE-2025-62706"
@@ -51,6 +51,10 @@
     {
       "type": "PACKAGE",
       "url": "https://github.com/authlib/authlib"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00032.html"
     }
   ],
   "database_specific": {
 
@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-pq5p-34cr-23v9",
-  "modified": "2025-10-13T15:46:00Z",
+  "modified": "2025-11-03T18:31:46Z",
   "published": "2025-10-10T20:26:43Z",
   "aliases": [
     "CVE-2025-61920"
@@ -51,6 +51,10 @@
     {
       "type": "PACKAGE",
       "url": "https://github.com/authlib/authlib"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00032.html"
     }
   ],
   "database_specific": {
 
@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-g9gv-9646-jvp8",
-  "modified": "2022-01-06T00:01:20Z",
+  "modified": "2025-11-03T18:31:10Z",
   "published": "2021-12-24T00:00:45Z",
   "aliases": [
     "CVE-2021-45463"
   ],
   "details": "GEGL before 0.4.34, as used (for example) in GIMP before 2.10.30, allows shell expansion when a pathname in a constructed command line is not escaped or filtered. This is caused by use of the system library function for execution of the ImageMagick convert fallback in magick-load.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -30,6 +35,18 @@
       "type": "WEB",
       "url": "https://gitlab.gnome.org/GNOME/gimp/-/commit/e8a31ba4f2ce7e6bc34882dc27c97fba993f5868"
     },
+    {
+      "type": "WEB",
+      "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00021.html"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CG635WJCNXHJM5U4BGMAAP4NK2YFTQXK"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZP5NDNOTMPI335FXE7VUPW7FXYTT7PYN"
+    },
     {
       "type": "WEB",
       "url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/CG635WJCNXHJM5U4BGMAAP4NK2YFTQXK"
 
@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-2259-5mcv-w35h",
-  "modified": "2023-04-01T18:30:21Z",
+  "modified": "2025-11-03T18:31:10Z",
   "published": "2022-02-16T00:01:42Z",
   "aliases": [
     "CVE-2021-44960"
@@ -30,6 +30,10 @@
     {
       "type": "WEB",
       "url": "https://lists.debian.org/debian-lts-announce/2023/04/msg00001.html"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00016.html"
     }
   ],
   "database_specific": {
Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`{`
`2`	`2`	`"schema_version": "1.4.0",`
`3`	`3`	`"id": "GHSA-p72g-pv48-7w9x",`
`4`		`- "modified": "2025-10-29T10:37:49Z",`
	`4`	`+ "modified": "2025-11-03T18:31:34Z",`
`5`	`5`	`"published": "2025-08-20T21:30:27Z",`
`6`	`6`	`"aliases": [`
`7`	`7`	`"CVE-2025-54988"`
`@@ -90,6 +90,10 @@`
`90`	`90`	`{`
`91`	`91`	`"type": "WEB",`
`92`	`92`	`"url": "https://lists.apache.org/thread/stn9oh7rfn9yv76n1srxr9w56oy04p72"`
	`93`	`+ },`
	`94`	`+ {`
	`95`	`+ "type": "WEB",`
	`96`	`+ "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00030.html"`
`93`	`97`	`}`
`94`	`98`	`],`
`95`	`99`	`"database_specific": {`
Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`{`
`2`	`2`	`"schema_version": "1.4.0",`
`3`	`3`	`"id": "GHSA-vf2r-cxg9-p7rf",`
`4`		`- "modified": "2025-08-05T17:09:49Z",`
	`4`	`+ "modified": "2025-11-03T18:31:33Z",`
`5`	`5`	`"published": "2025-08-04T15:12:03Z",`
`6`	`6`	`"aliases": [`
`7`	`7`	`"CVE-2025-54119"`
`@@ -58,6 +58,10 @@`
`58`	`58`	`{`
`59`	`59`	`"type": "PACKAGE",`
`60`	`60`	`"url": "https://github.com/ADOdb/ADOdb"`
	`61`	`+ },`
	`62`	`+ {`
	`63`	`+ "type": "WEB",`
	`64`	`+ "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00020.html"`
`61`	`65`	`}`
`62`	`66`	`],`
`63`	`67`	`"database_specific": {`
Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`{`
`2`	`2`	`"schema_version": "1.4.0",`
`3`	`3`	`"id": "GHSA-9ggr-2464-2j32",`
`4`		`- "modified": "2025-09-22T20:08:32Z",`
	`4`	`+ "modified": "2025-11-03T18:31:42Z",`
`5`	`5`	`"published": "2025-09-22T14:42:12Z",`
`6`	`6`	`"aliases": [`
`7`	`7`	`"CVE-2025-59420"`
`@@ -51,6 +51,10 @@`
`51`	`51`	`{`
`52`	`52`	`"type": "PACKAGE",`
`53`	`53`	`"url": "https://github.com/authlib/authlib"`
	`54`	`+ },`
	`55`	`+ {`
	`56`	`+ "type": "WEB",`
	`57`	`+ "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00032.html"`
`54`	`58`	`}`
`55`	`59`	`],`
`56`	`60`	`"database_specific": {`
Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`{`
`2`	`2`	`"schema_version": "1.4.0",`
`3`	`3`	`"id": "GHSA-9pp9-cfwx-54rm",`
`4`		`- "modified": "2025-10-28T14:43:21Z",`
	`4`	`+ "modified": "2025-11-03T18:31:46Z",`
`5`	`5`	`"published": "2025-10-28T14:43:20Z",`
`6`	`6`	`"aliases": [`
`7`	`7`	`"CVE-2025-62171"`
`@@ -150,6 +150,10 @@`
`150`	`150`	`{`
`151`	`151`	`"type": "WEB",`
`152`	`152`	`"url": "https://github.com/dlemstra/Magick.NET/releases/tag/14.9.0"`
	`153`	`+ },`
	`154`	`+ {`
	`155`	`+ "type": "WEB",`
	`156`	`+ "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00019.html"`
`153`	`157`	`}`
`154`	`158`	`],`
`155`	`159`	`"database_specific": {`
Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`{`
`2`	`2`	`"schema_version": "1.4.0",`
`3`	`3`	`"id": "GHSA-g7f3-828f-7h7m",`
`4`		`- "modified": "2025-10-23T17:40:14Z",`
	`4`	`+ "modified": "2025-11-03T18:31:46Z",`
`5`	`5`	`"published": "2025-10-10T22:54:03Z",`
`6`	`6`	`"aliases": [`
`7`	`7`	`"CVE-2025-62706"`
`@@ -51,6 +51,10 @@`
`51`	`51`	`{`
`52`	`52`	`"type": "PACKAGE",`
`53`	`53`	`"url": "https://github.com/authlib/authlib"`
	`54`	`+ },`
	`55`	`+ {`
	`56`	`+ "type": "WEB",`
	`57`	`+ "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00032.html"`
`54`	`58`	`}`
`55`	`59`	`],`
`56`	`60`	`"database_specific": {`
Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`{`
`2`	`2`	`"schema_version": "1.4.0",`
`3`	`3`	`"id": "GHSA-pq5p-34cr-23v9",`
`4`		`- "modified": "2025-10-13T15:46:00Z",`
	`4`	`+ "modified": "2025-11-03T18:31:46Z",`
`5`	`5`	`"published": "2025-10-10T20:26:43Z",`
`6`	`6`	`"aliases": [`
`7`	`7`	`"CVE-2025-61920"`
`@@ -51,6 +51,10 @@`
`51`	`51`	`{`
`52`	`52`	`"type": "PACKAGE",`
`53`	`53`	`"url": "https://github.com/authlib/authlib"`
	`54`	`+ },`
	`55`	`+ {`
	`56`	`+ "type": "WEB",`
	`57`	`+ "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00032.html"`
`54`	`58`	`}`
`55`	`59`	`],`
`56`	`60`	`"database_specific": {`
Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`{`
`2`	`2`	`"schema_version": "1.4.0",`
`3`	`3`	`"id": "GHSA-2259-5mcv-w35h",`
`4`		`- "modified": "2023-04-01T18:30:21Z",`
	`4`	`+ "modified": "2025-11-03T18:31:10Z",`
`5`	`5`	`"published": "2022-02-16T00:01:42Z",`
`6`	`6`	`"aliases": [`
`7`	`7`	`"CVE-2021-44960"`
`@@ -30,6 +30,10 @@`
`30`	`30`	`{`
`31`	`31`	`"type": "WEB",`
`32`	`32`	`"url": "https://lists.debian.org/debian-lts-announce/2023/04/msg00001.html"`
	`33`	`+ },`
	`34`	`+ {`
	`35`	`+ "type": "WEB",`
	`36`	`+ "url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00016.html"`
`33`	`37`	`}`
`34`	`38`	`],`
`35`	`39`	`"database_specific": {`