[Git][security-tracker-team/security-tracker][master] Add tracking for new libcsp issues

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
02900d36 by Salvatore Bonaccorso at 2025-08-12T07:56:40+02:00
Add tracking for new libcsp issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -95,9 +95,13 @@ CVE-2025-53187 (Improper Control of Generation of Code ('Code Injection') vulner
 CVE-2025-52931 (Mattermost Confluence Plugin version <1.5.0 fails to handle unexpected ...)
 	NOT-FOR-US: Mattermost Confluence Plugin
 CVE-2025-51824 (libcsp 2.0 is vulnerable to Buffer Overflow in the csp_usart_open() fu ...)
-	TODO: check
+	- libcsp <removed>
+	NOTE: https://github.com/libcsp/libcsp/issues/851
+	NOTE: https://github.com/libcsp/libcsp/pull/853
 CVE-2025-51823 (libcsp 2.0 is vulnerable to Buffer Overflow in the csp_eth_init() func ...)
-	TODO: check
+	- libcsp <removed>
+	NOTE: https://github.com/libcsp/libcsp/issues/850
+	NOTE: https://github.com/libcsp/libcsp/pull/852
 CVE-2025-49221 (Mattermost Confluence Plugin version <1.5.0 fails to enforce authentic ...)
 	NOT-FOR-US: Mattermost Confluence Plugin
 CVE-2025-48731 (Mattermost Confluence Plugin version <1.5.0 fails to check the access  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/02900d36e94659e3560e6d737f55805f710e02bf

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/02900d36e94659e3560e6d737f55805f710e02bf
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250812/51cf2e99/attachment.htm>