[Git][security-tracker-team/security-tracker][master] new optee-os issue

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f3cd9d70 by Moritz Mühlenhoff at 2025-07-10T15:44:30+02:00
new optee-os issue

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2358,7 +2358,9 @@ CVE-2025-47565 (Missing Authorization vulnerability in ashanjay EventON allows E
 CVE-2025-47479 (Weak Authentication vulnerability in AresIT WP Compress allows Authent ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-46733 (OP-TEE is a Trusted Execution Environment (TEE) designed as companion  ...)
-	TODO: check
+	- optee-os <unfixed>
+	NOTE: https://github.com/OP-TEE/optee_os/security/advisories/GHSA-f35r-hm2m-p6c3
+	NOTE: https://github.com/OP-TEE/optee_os/commit/941a58d78c99c4754fbd4ec3079ec9e1d596af8f
 CVE-2025-39487 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
 	NOT-FOR-US: WordPress plugin or theme
 CVE-2025-32918 (Improper neutralization of Livestatus command delimiters in autocomple ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f3cd9d70e4a79f50222c65a779c57b06bd1fc52e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f3cd9d70e4a79f50222c65a779c57b06bd1fc52e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250710/bdb3ebee/attachment.htm>