[Git][security-tracker-team/security-tracker][master] Initial bootstrap for CVE-2025-8671
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Aug 13 21:31:03 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
530b9d5e by Salvatore Bonaccorso at 2025-08-13T22:30:03+02:00
Initial bootstrap for CVE-2025-8671
Not all projects will be covered under this CVE and will assign / have
assigned own CVEs. So we should be careful to not mix things.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -49,7 +49,9 @@ CVE-2025-8770 (An issue has been discovered in GitLab EE affecting all versions
CVE-2025-8754 (Missing Authentication for Critical Function vulnerability in ABB ABB ...)
NOT-FOR-US: ABB group
CVE-2025-8671 (A mismatch caused by client-triggered server-sent stream resets betwee ...)
- TODO: check
+ NOTE: https://kb.cert.org/vuls/id/767506
+ NOTE: https://galbarnahum.com/made-you-reset
+ TODO: check, some projects will assign own CVEs and should then be covered under that specific CVE instead
CVE-2025-7739 (An issue has been discovered in GitLab CE/EE affecting all versions fr ...)
TODO: check
CVE-2025-7734 (An issue has been discovered in GitLab CE/EE affecting all versions fr ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/530b9d5e17b8d180c6b728fef653bd56c54d4373
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/530b9d5e17b8d180c6b728fef653bd56c54d4373
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250813/12664193/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list