[Git][security-tracker-team/security-tracker][master] new musl issue
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Fri Feb 14 10:36:20 GMT 2025
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
6e97fc21 by Moritz Mühlenhoff at 2025-02-14T11:35:51+01:00
new musl issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3,7 +3,9 @@ CVE-2025-26789 (An issue was discovered in Logpoint AgentX before 1.5.0. A vulne
CVE-2025-26788 (StrongKey FIDO Server before 4.15.1 treats a non-discoverable (namedcr ...)
NOT-FOR-US: StrongKey FIDO Server
CVE-2025-26519 (musl libc 0.9.13 through 1.2.5 before 1.2.6 has an out-of-bounds write ...)
- TODO: check
+ - musl <unfixed>
+ [bookworm] - musl <no-dsa> (Minor issue)
+ NOTE: https://www.openwall.com/lists/oss-security/2025/02/13/2
CVE-2025-26473 (The Mojave Inverter uses the GET method for sensitive information.)
NOT-FOR-US: Mojave Inverter
CVE-2025-25281 (An attacker may modify the URL to discover sensitive information about ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6e97fc2147707f7b9e75b9fef35221440b382e3d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6e97fc2147707f7b9e75b9fef35221440b382e3d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250214/5e7833b6/attachment.htm>
More information about the debian-security-tracker-commits
mailing list