[Git][security-tracker-team/security-tracker][master] Add new set of binutils CVEs

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
42f738cd by Salvatore Bonaccorso at 2025-02-11T09:51:01+01:00
Add new set of binutils CVEs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -45,17 +45,30 @@ CVE-2025-23187 (Due to missing authorization check in an RFC enabled function mo
 CVE-2025-1211 (Versions of the package hackney from 0.0.0 are vulnerable to Server-si ...)
 	NOT-FOR-US: hackney
 CVE-2025-1181 (A vulnerability classified as critical was found in GNU Binutils 2.43. ...)
-	TODO: check
+	- binutils <unfixed> (unimportant)
+	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=32643
+	NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=931494c9a89558acb36a03a340c01726545eef24
+	NOTE: binutils not covered by security support
 CVE-2025-1180 (A vulnerability classified as problematic has been found in GNU Binuti ...)
-	TODO: check
+	- binutils <unfixed> (unimportant)
+	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=32642
+	NOTE: binutils not covered by security support
 CVE-2025-1179 (A vulnerability was found in GNU Binutils 2.43. It has been rated as c ...)
-	TODO: check
+	- binutils <unfixed> (unimportant)
+	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=32640
+	NOTE: binutils not covered by security support
 CVE-2025-1178 (A vulnerability was found in GNU Binutils 2.43. It has been declared a ...)
-	TODO: check
+	- binutils <unfixed> (unimportant)
+	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=32638
+	NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=75086e9de1707281172cc77f178e7949a4414ed0
+	NOTE: binutils not covered by security support
 CVE-2025-1177 (A vulnerability was found in dayrui XunRuiCMS 4.6.3. It has been class ...)
 	NOT-FOR-US: dayrui XunRuiCMS
 CVE-2025-1176 (A vulnerability was found in GNU Binutils 2.43 and classified as criti ...)
-	TODO: check
+	- binutils <unfixed> (unimportant)
+	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=32636
+	NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=f9978defb6fab0bd8583942d97c112b0932ac814
+	NOTE: binutils not covered by security support
 CVE-2025-1174 (A vulnerability has been found in 1000 Projects Bookstore Management S ...)
 	NOT-FOR-US: 1000 Projects Bookstore Management System
 CVE-2025-1173 (A vulnerability, which was classified as critical, was found in 1000 P ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/42f738cda4305e6da8cfcfb1c4ae8efaf1d004a1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/42f738cda4305e6da8cfcfb1c4ae8efaf1d004a1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250211/d856d059/attachment-0001.htm>