[Git][security-tracker-team/security-tracker][master] Add CVE-2025-32022/finit
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed May 7 07:29:46 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
62e6a923 by Salvatore Bonaccorso at 2025-05-07T08:29:34+02:00
Add CVE-2025-32022/finit
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -115,7 +115,10 @@ CVE-2025-3782 (The Cision Block plugin for WordPress is vulnerable to Stored Cro
CVE-2025-37730 (Improper certificate validation in Logstash's TCP output could lead to ...)
- logstash <itp> (bug #664841)
CVE-2025-32022 (Finit provides fast init for Linux systems. Finit's urandom plugin has ...)
- TODO: check
+ - finit <unfixed>
+ [bookworm] - finit <no-dsa> (Minor issue)
+ NOTE: https://github.com/troglobit/finit/security/advisories/GHSA-fv6v-vw8h-9x79
+ NOTE: Fixed by: https://github.com/troglobit/finit/commit/3feff37ba51fa0a6a0a06f59682a0918aa5b04de (4.12)
CVE-2025-30165 (vLLM is an inference and serving engine for large language models. In ...)
- vllm <itp> (bug #1095237)
CVE-2025-2898 (IBM Maximo Application Suite 9.0 could allow an attacker with some lev ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/62e6a9233fb0b43dac41763f15ff6c9cf9ba671c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/62e6a9233fb0b43dac41763f15ff6c9cf9ba671c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250507/ee00b733/attachment.htm>
More information about the debian-security-tracker-commits
mailing list