[Git][security-tracker-team/security-tracker][master] List CVE from DLA 4143-1
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Apr 30 06:01:48 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
24c23d10 by Salvatore Bonaccorso at 2025-04-30T07:01:17+02:00
List CVE from DLA 4143-1
- - - - -
2 changed files:
- data/CVE/list
- data/DLA/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -31617,7 +31617,6 @@ CVE-2025-0604 (A flaw was found in Keycloak. When an Active Directory user reset
CVE-2025-0395 (When the assert() function in the GNU C Library versions 2.13 to 2.40 ...)
- glibc 2.40-6
[bookworm] - glibc 2.36-9+deb12u10
- [bullseye] - glibc <postponed> (Minor issue; can be fixed in next update)
NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=32582
NOTE: https://www.openwall.com/lists/oss-security/2025/01/22/4
NOTE: Fixed by: https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=7d4b6bcae91f29d7b4daf15bab06b66cf1d2217c (2.40-branch)
=====================================
data/DLA/list
=====================================
@@ -1,4 +1,5 @@
[30 Apr 2025] DLA-4143-1 glibc - security update
+ {CVE-2025-0395}
[bullseye] - glibc 2.31-13+deb11u12
[29 Apr 2025] DLA-4142-1 libraw - security update
{CVE-2025-43961 CVE-2025-43962 CVE-2025-43963 CVE-2025-43964}
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/24c23d10b2d028a4fbedc1891d5f5a2af440ab6c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/24c23d10b2d028a4fbedc1891d5f5a2af440ab6c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250430/21cda05c/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list