[Git][security-tracker-team/security-tracker][master] Add initial tracking for three php issues

Wed Dec 17 08:15:51 GMT 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8f4f12c9 by Salvatore Bonaccorso at 2025-12-17T09:15:33+01:00
Add initial tracking for three php issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -66,6 +66,21 @@ CVE-2025-11009 (Cleartext Storage of Sensitive Information vulnerability in Mits
 	NOT-FOR-US: Mitsubishi
 CVE-2025-0852
 	REJECTED
+CVE-2025-14180
+	- php8.4 <unfixed>
+	- php8.2 <removed>
+	- php7.4 <removed>
+	NOTE: https://github.com/php/php-src/security/advisories/GHSA-8xr5-qppj-gvwj
+CVE-2025-14178
+	- php8.4 <unfixed>
+	- php8.2 <removed>
+	- php7.4 <removed>
+	NOTE: https://github.com/php/php-src/security/advisories/GHSA-h96m-rvf9-jgm2
+CVE-2025-14177
+	- php8.4 <unfixed>
+	- php8.2 <removed>
+	- php7.4 <removed>
+	NOTE: https://github.com/php/php-src/security/advisories/GHSA-3237-qqm7-mfv7
 CVE-2025-XXXX [backups: Set proper permissions for backups-data directory]
 	- freedombox 25.17.1
 	[trixie] - freedombox <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8f4f12c9a1359037a92dba73978100eb03221fec

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8f4f12c9a1359037a92dba73978100eb03221fec
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251217/4dd12d20/attachment.htm>
