[Git][security-tracker-team/security-tracker][master] Add CVE-2025-52936/sslh
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Jun 24 07:04:36 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
99c2a85b by Salvatore Bonaccorso at 2025-06-24T08:04:18+02:00
Add CVE-2025-52936/sslh
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -39,7 +39,9 @@ CVE-2025-52938 (Out-of-bounds Read vulnerability in dail8859 NotepadNext (src/lu
CVE-2025-52937 (Vulnerability in PointCloudLibrary PCL (surface/src/3rdparty/opennurbs ...)
TODO: check
CVE-2025-52936 (Improper Link Resolution Before File Access ('Link Following') vulnera ...)
- TODO: check
+ - sslh <unfixed>
+ NOTE: https://github.com/yrutschle/sslh/pull/494
+ NOTE: Fixed by: https://github.com/yrutschle/sslh/commit/0fe9bd5a956a123342ff12352b25bff8025dac69 (v2.2.2)
CVE-2025-52935 (Integer Overflow or Wraparound vulnerability in dragonflydb dragonfly ...)
TODO: check
CVE-2025-52922 (Innoshop through 0.4.1 allows directory traversal via FileManager API ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/99c2a85bb9a385c2ddfaccf005a1fad1d8c04c43
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/99c2a85bb9a385c2ddfaccf005a1fad1d8c04c43
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250624/b73c3325/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list