[Git][security-tracker-team/security-tracker][master] Add CVE-2025-47203/dropbear
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed May 7 22:00:41 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
09a305d6 by Salvatore Bonaccorso at 2025-05-07T22:57:49+02:00
Add CVE-2025-47203/dropbear
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -311,7 +311,8 @@ CVE-2025-47439 (Improper Control of Filename for Include/Require Statement in PH
CVE-2025-47423 (Personal Weather Station Dashboard 12_lts allows unauthenticated remot ...)
NOT-FOR-US: Personal Weather Station Dashboard
CVE-2025-47203 (dbclient in Dropbear SSH before 2025.88 allows command injection via a ...)
- TODO: check
+ - dropbear 2025.88-1
+ NOTE: Fixed by: https://github.com/mkj/dropbear/commit/e5a0ef27c227f7ae69d9a9fec98a056494409b9b (DROPBEAR_2025.88)
CVE-2025-46828 (WeGIA is a web manager for charitable institutions. An unauthenticate ...)
NOT-FOR-US: WeGIA
CVE-2025-46827 (Graylog is a free and open log management platform. Prior to versions ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/09a305d6b46892b1dbc55f8b55d2de26ecf0c146
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/09a305d6b46892b1dbc55f8b55d2de26ecf0c146
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250507/ad0d4666/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list