[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2025-6297/dpkg
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Jul 2 04:46:07 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
abeed4b6 by Salvatore Bonaccorso at 2025-07-02T05:45:39+02:00
Track fixed version for CVE-2025-6297/dpkg
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -310,7 +310,7 @@ CVE-2025-32462 (Sudo before 1.9.17p1, when used with a sudoers file that specifi
- sudo 1.9.16p2-3
NOTE: https://www.sudo.ws/security/advisories/host_any/
CVE-2025-6297 (It was discovered that dpkg-deb does not properly sanitize directory p ...)
- - dpkg <unfixed>
+ - dpkg 1.22.21
[bookworm] - dpkg <no-dsa> (Minor issue)
NOTE: Fixed by: https://git.dpkg.org/cgit/dpkg/dpkg.git/commit/?id=ed6bbd445dd8800308c67236ba35d08004c98e82
CVE-2025-6898 (A vulnerability, which was classified as critical, has been found in D ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/abeed4b6367ce67486d5696cafe1431a3eab5b54
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/abeed4b6367ce67486d5696cafe1431a3eab5b54
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250702/154e2caf/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list