[Git][security-tracker-team/security-tracker][master] Reference upstream issues for gnutls issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Jul 28 20:21:00 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
81fb03f7 by Salvatore Bonaccorso at 2025-07-28T21:19:49+02:00
Reference upstream issues for gnutls issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5035,21 +5035,25 @@ CVE-2025-32990 (A heap-buffer-overflow (off-by-one) flaw was found in the GnuTLS
{DSA-5962-1}
- gnutls28 3.8.9-3
NOTE: https://lists.gnupg.org/pipermail/gnutls-help/2025-July/004883.html
+ NOTE: https://gitlab.com/gnutls/gnutls/-/issues/1696
NOTE: Fixed by: https://gitlab.com/gnutls/gnutls/-/commit/408bed40c36a4cc98f0c94a818f682810f731f32 (3.8.10)
CVE-2025-32989 (A heap-buffer-overread vulnerability was found in GnuTLS in how it han ...)
{DSA-5962-1}
- gnutls28 3.8.9-3
NOTE: https://lists.gnupg.org/pipermail/gnutls-help/2025-July/004883.html
+ NOTE: https://gitlab.com/gnutls/gnutls/-/issues/1695
NOTE: Fixed by: https://gitlab.com/gnutls/gnutls/-/commit/8e5ca951257202089246fa37e93a99d210ee5ca2 (3.8.10)
CVE-2025-32988 (A flaw was found in GnuTLS. A double-free vulnerability exists in GnuT ...)
{DSA-5962-1}
- gnutls28 3.8.9-3
NOTE: https://lists.gnupg.org/pipermail/gnutls-help/2025-July/004883.html
+ NOTE: https://gitlab.com/gnutls/gnutls/-/issues/1694
NOTE: Fixed by: https://gitlab.com/gnutls/gnutls/-/commit/608829769cbc247679ffe98841109fc73875e573 (3.8.10)
CVE-2025-6395 (A NULL pointer dereference flaw was found in the GnuTLS software in _g ...)
{DSA-5962-1}
- gnutls28 3.8.9-3
NOTE: https://lists.gnupg.org/pipermail/gnutls-help/2025-July/004883.html
+ NOTE: https://gitlab.com/gnutls/gnutls/-/issues/1718
NOTE: Fixed by: https://gitlab.com/gnutls/gnutls/-/commit/23135619773e6ec087ff2abc65405bd4d5676bad (3.8.10)
CVE-2025-7381 (ImpactThis is an information disclosure vulnerability originating from ...)
NOT-FOR-US: Docker Image for Mautic
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/81fb03f773d1b5945d56470a39e8040d5a24ac5d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/81fb03f773d1b5945d56470a39e8040d5a24ac5d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250728/90a00649/attachment.htm>
More information about the debian-security-tracker-commits
mailing list