[Git][security-tracker-team/security-tracker][master] Add CVE-2025-2713/golang-gvisor-gvisor
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Mar 28 20:29:24 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
cfeed6a4 by Salvatore Bonaccorso at 2025-03-28T21:29:00+01:00
Add CVE-2025-2713/golang-gvisor-gvisor
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -167,7 +167,8 @@ CVE-2025-2858 (Privilege escalation vulnerability in the saTECH BCU firmware ver
CVE-2025-2815 (The Administrator Z plugin for WordPress is vulnerable to unauthorized ...)
NOT-FOR-US: WordPress plugin
CVE-2025-2713 (Google gVisor's runsc component exhibited a local privilege escalation ...)
- TODO: check
+ - golang-gvisor-gvisor 0.0~20240729.0-1
+ NOTE: Fixed by: https://github.com/google/gvisor/commit/586c38d70081b13b2ed494cef48e99b93956843e (release-20240325.0)
CVE-2025-29928 (authentik is an open-source identity provider. Prior to versions 2024. ...)
NOT-FOR-US: authentik
CVE-2025-28221 (Tenda W6_S v1.0.0.4_510 has a Buffer Overflow vulnerability in the set ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cfeed6a42386a9c789a8adc204c20f62e5f488ff
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cfeed6a42386a9c789a8adc204c20f62e5f488ff
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250328/235f13e3/attachment.htm>
More information about the debian-security-tracker-commits
mailing list