[Git][security-tracker-team/security-tracker][master] Associate source fix for buffer overflow until CVE-2025-29481 properly rejected
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Apr 25 20:47:37 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
fe55657f by Salvatore Bonaccorso at 2025-04-25T21:47:04+02:00
Associate source fix for buffer overflow until CVE-2025-29481 properly rejected
Keep it unimportant as the issue is disputed and might be rejected as
already explained in the notes.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5773,6 +5773,7 @@ CVE-2025-29482 (Buffer Overflow vulnerability in libheif 1.19.7 allows a local a
NOTE: https://github.com/lmarch2/poc/blob/main/libheif/libheif.md
NOTE: https://github.com/strukturag/libde265/issues/472
CVE-2025-29481 (Buffer Overflow vulnerability in libbpf 1.5.0 allows a local attacker ...)
+ - libbpf 1.5.0-3 (unimportant; bug #1102672)
NOTE: https://github.com/lmarch2/poc/blob/main/libbpf/libbpf.md
NOTE: https://github.com/libbpf/libbpf/issues/898
NOTE: https://lore.kernel.org/bpf/20250410095517.141271-1-vmalik@redhat.com/
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fe55657fac70f96b58eea4b1bb9306f400263174
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fe55657fac70f96b58eea4b1bb9306f400263174
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250425/62f8f39c/attachment.htm>
More information about the debian-security-tracker-commits
mailing list