[Git][security-tracker-team/security-tracker][master] Update status for CVE-2025-46802
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon May 12 18:40:39 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1d0de0df by Salvatore Bonaccorso at 2025-05-12T19:40:15+02:00
Update status for CVE-2025-46802
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -13,8 +13,11 @@ CVE-2025-46803
NOTE: https://www.openwall.com/lists/oss-security/2025/05/12/1
CVE-2025-46802
- screen <unfixed>
+ [bookworm] - screen <no-dsa> (Minor issue when Screen no installed setuid-root)
NOTE: Fixed by: https://git.savannah.gnu.org/cgit/screen.git/commit/?id=049b26b22e197ba3be9c46e5c193032e01a4724a
NOTE: https://www.openwall.com/lists/oss-security/2025/05/12/1
+ NOTE: Has potential to break some reattach use cases, but the specific use case
+ NOTE: was broken already before.
CVE-2025-23395
- screen <not-affected> (Vulnerable code only introduced in Scren v5 branch)
NOTE: Introduced with: https://git.savannah.gnu.org/cgit/screen.git/commit/?id=441bca708bd197ae15d031ccfd2b42077eeebedc (v.5.0.0)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1d0de0df87edd18b869b94cee79532c70f1e0f58
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1d0de0df87edd18b869b94cee79532c70f1e0f58
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250512/a269dcbb/attachment.htm>
More information about the debian-security-tracker-commits
mailing list