[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2025-0495/docker-buildx
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Apr 12 13:39:44 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
6fbca509 by Salvatore Bonaccorso at 2025-04-12T14:39:02+02:00
Track fixed version for CVE-2025-0495/docker-buildx
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -9559,7 +9559,7 @@ CVE-2025-0596 (A stored Cross-site Scripting (XSS) vulnerability affecting Bookm
CVE-2025-0595 (A stored Cross-site Scripting (XSS) vulnerability affecting 3DDashboar ...)
NOT-FOR-US: 3DS
CVE-2025-0495 (Buildx is a Docker CLI plugin that extends build capabilities using Bu ...)
- - docker-buildx <unfixed> (bug #1100991)
+ - docker-buildx 0.13.1+ds1-3 (bug #1100991)
NOTE: https://github.com/docker/buildx/security/advisories/GHSA-m4gq-fm9h-8q75
NOTE: Fixed by: https://github.com/docker/buildx/commit/0982070af84d476b232d2d75ab551c3222592db1 (v0.21.3)
CVE-2024-9055 (The DPA countermeasures on Silicon Labs' Series 2 devices are not rese ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6fbca509694ed97fa1573ec7fa4c77c5a7fbb51c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6fbca509694ed97fa1573ec7fa4c77c5a7fbb51c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250412/c204c059/attachment.htm>
More information about the debian-security-tracker-commits
mailing list