[Git][security-tracker-team/security-tracker][master] Add CVE-2025-53859/nginx
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Aug 13 21:09:37 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d487fbf7 by Salvatore Bonaccorso at 2025-08-13T22:09:18+02:00
Add CVE-2025-53859/nginx
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,7 @@
+CVE-2025-53859 [nginx: ngx_mail_smtp_module buffer over-read potentially resulting in sensitive information leak]
+ - nginx <unfixed>
+ NOTE: https://www.openwall.com/lists/oss-security/2025/08/13/5
+ NOTE: https://nginx.org/download/patch.2025.smtp.txt
CVE-2025-54472
- brpc <itp> (bug #1060006)
CVE-2024-36331 [x86/sev: Evict cache lines during SNP memory validation]
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d487fbf7c9870ace9f0089dc879a7f22be039052
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d487fbf7c9870ace9f0089dc879a7f22be039052
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250813/0244bb84/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list