[Git][security-tracker-team/security-tracker][master] Reference full commit identifier for introducing commit
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Jun 1 06:18:31 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9410f3c0 by Salvatore Bonaccorso at 2025-06-01T07:02:46+02:00
Reference full commit identifier for introducing commit
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -12285,7 +12285,7 @@ CVE-2025-43929 (open_actions.py in kitty before 0.41.0 does not ask for user con
[bullseye] - kitty <not-affected> (vulnerable code introduced later)
NOTE: https://github.com/kovidgoyal/kitty/commit/ce5cfdd9caf44c538af800a07162e1f49bd53c35 (v0.41.0)
NOTE: PoC: https://github.com/0xBenCantCode/CVE-2025-43929
- NOTE: Vulernable code introduced with commit https://github.com/kovidgoyal/kitty/commit/1454af2d (v0.24.2)
+ NOTE: Vulernable code introduced with: https://github.com/kovidgoyal/kitty/commit/1454af2d416f0eb738c2268ee3297cacb0215dd0 (v0.24.2)
CVE-2025-43928 (In Infodraw Media Relay Service (MRS) 7.1.0.0, the MRS web server (on ...)
NOT-FOR-US: Media Relay Service web service
CVE-2025-43921 (GNU Mailman 2.1.39, as bundled in cPanel (and WHM), allows unauthentic ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9410f3c02ce58817d45b20c1aa8b7307b1b10d9f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9410f3c02ce58817d45b20c1aa8b7307b1b10d9f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250601/bbb0ac2d/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list