[Git][security-tracker-team/security-tracker][master] Mark CVE-2025-0167 as no-dsa for bookworm
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Feb 12 19:52:36 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
61168f95 by Salvatore Bonaccorso at 2025-02-12T20:51:49+01:00
Mark CVE-2025-0167 as no-dsa for bookworm
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1856,6 +1856,7 @@ CVE-2023-52924 (In the Linux kernel, the following vulnerability has been resolv
NOTE: https://git.kernel.org/linus/24138933b97b055d486e8064b4a1721702442a9b (6.5-rc6)
CVE-2025-0167 (When asked to use a `.netrc` file for credentials **and** to follow HT ...)
- curl 8.12.0+git20250209.89ed161+ds-1
+ [bookworm] - curl <no-dsa> (Minor issue; can be fixed via point release)
[bullseye] - curl <not-affected> (Vulnerable code introduced later)
NOTE: https://curl.se/docs/CVE-2025-0167.html
NOTE: Introduced with: https://github.com/curl/curl/commit/46620b97431e19c53ce82e55055c85830f088cf4 (curl-7_76_0)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/61168f9584aff73c9237cc8848deb2ef39001d25
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/61168f9584aff73c9237cc8848deb2ef39001d25
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250212/04aaa631/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list