[Git][security-tracker-team/security-tracker][master] Add CVE-2025-53538/suricata
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Jul 23 22:10:40 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
53dd80f4 by Salvatore Bonaccorso at 2025-07-23T23:09:59+02:00
Add CVE-2025-53538/suricata
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -107,7 +107,10 @@ CVE-2025-53882 (A Reliance on Untrusted Inputs in a Security Decision vulnerabil
CVE-2025-53703 (DuraComm SPM-500 DP-10iN-100-MU transmits sensitive data without enc ...)
NOT-FOR-US: DuraComm
CVE-2025-53538 (Suricata is a network IDS, IPS and NSM engine developed by the OISF (O ...)
- TODO: check
+ - suricata <unfixed>
+ NOTE: https://github.com/OISF/suricata/security/advisories/GHSA-qrr7-crgj-cmh3
+ NOTE: Fixed by: https://github.com/OISF/suricata/commit/1d6d331752e933c46aca0ae7a9679b27462246e3 (suricata-8.0.0)
+ NOTE: Fixed by: https://github.com/OISF/suricata/commit/7fa88ea9e7d05e07a7864050cfd836b576669720 (suricata-7.0.11)
CVE-2025-51462 (Stored Cross-site Scripting (XSS) vulnerability in api.apps.dialog_app ...)
NOT-FOR-US: RAGFlow
CVE-2025-50481 (A cross-site scripting (XSS) vulnerability in the component /blog/blog ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/53dd80f4a677b1b5dba1d2343ab806c5d00f94dd
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/53dd80f4a677b1b5dba1d2343ab806c5d00f94dd
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250723/67dffbbd/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list