[Git][security-tracker-team/security-tracker][master] Slighly reorder packages for CVE-2025-8671
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Aug 15 19:07:42 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
cc8081e3 by Salvatore Bonaccorso at 2025-08-15T20:06:20+02:00
Slighly reorder packages for CVE-2025-8671
As this will get more entries over time still, order it at least a bit
to not loose overview (samewise in notes for clarity when tracking
explicit references).
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -851,9 +851,9 @@ CVE-2025-8754 (Missing Authentication for Critical Function vulnerability in ABB
NOT-FOR-US: ABB group
CVE-2025-8671 (A mismatch caused by client-triggered server-sent stream resets betwee ...)
- h2o <removed>
+ - haproxy <not-affected> (Performs stream management correctly)
- lighttpd <unfixed> (bug #1111140)
- varnish 7.7.2-1
- - haproxy <not-affected> (Performs stream management correctly)
NOTE: https://kb.cert.org/vuls/id/767506
NOTE: https://galbarnahum.com/made-you-reset
NOTE: h2o: https://github.com/h2o/h2o/security/advisories/GHSA-mrjm-qq9m-9mjq
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cc8081e3fc3d943b43e3ea04104a744d0418b98a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cc8081e3fc3d943b43e3ea04104a744d0418b98a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250815/82668528/attachment.htm>
More information about the debian-security-tracker-commits
mailing list