[Git][security-tracker-team/security-tracker][master] Add CVE-2025-0411/7zip
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Jan 22 07:57:51 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e41f1d3a by Salvatore Bonaccorso at 2025-01-22T08:55:46+01:00
Add CVE-2025-0411/7zip
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,9 @@
+CVE-2025-0411 [7-Zip Mark-of-the-Web Bypass Vulnerability]
+ - 7zip 24.09+dfsg-1
+ - p7zip 16.02+transitional.1 (unimportant)
+ NOTE: Since p7zip/16.02+transitional.1 src:p7zip is only a empty source package
+ NOTE: depending on 7zip. Mark this version as fixed version.
+ NOTE: https://www.zerodayinitiative.com/advisories/ZDI-25-045/
CVE-2025-XXXX [PMASA-2025-2: XSS on Insert page]
- phpmyadmin 4:5.2.2-really5.2.2+20250121+dfsg-1
NOTE: https://www.phpmyadmin.net/security/PMASA-2025-2/
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e41f1d3a8ad4ccf60ece3c956494d23e00f620d6
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e41f1d3a8ad4ccf60ece3c956494d23e00f620d6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250122/b3244d0c/attachment.htm>
More information about the debian-security-tracker-commits
mailing list