[Git][security-tracker-team/security-tracker][master] new openssl issue
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Thu May 22 16:47:48 BST 2025
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ee5cf7a8 by Moritz Muehlenhoff at 2025-05-22T17:47:28+02:00
new openssl issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,10 @@
+CVE-2025-4575 [OpenSSL: The x509 application adds trusted use instead of rejected use]
+ - openssl <unfixed>
+ [bookworm] - openssl <not-affected> (Only affects 3.5.x)
+ [bullseye] - openssl <not-affected> (Only affects 3.5.x)
+ NOTE: https://openssl-library.org/news/secadv/20250522.txt
+ NOTE: https://github.com/openssl/openssl/commit/0eb9acc24febb1f3f01f0320cfba9654cf66b0ac (master)
+ NOTE: https://github.com/openssl/openssl/commit/e96d22446e633d117e6c9904cb15b4693e956eaa (openssl-3.5)
CVE-2025-5024 [gnome-remote-desktop: Uncontrolled Resource Consumption due to Malformed RDP PDUs]
- gnome-remote-desktop <unfixed>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2367717
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ee5cf7a8d20d5383a9f9ae1de346db0e917c3ec3
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ee5cf7a8d20d5383a9f9ae1de346db0e917c3ec3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250522/6463ff03/attachment.htm>
More information about the debian-security-tracker-commits
mailing list