[Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2025-47779,CVE-2025-47780/asterisk: reference patches

Sylvain Beucler (@beuc) gitlab at salsa.debian.org
Sat May 24 18:52:55 BST 2025 


Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
47b50a8b by Sylvain Beucler at 2025-05-24T19:52:47+02:00
CVE-2025-47779,CVE-2025-47780/asterisk: reference patches

- - - - -
67520429 by Sylvain Beucler at 2025-05-24T19:52:47+02:00
dla: add asterisk

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -467,9 +467,11 @@ CVE-2025-48061 (wire-webapp is the web application for the open-source messaging
 CVE-2025-47780 (Asterisk is an open-source private branch exchange (PBX). Prior to ver ...)
 	- asterisk <unfixed>
 	NOTE: https://github.com/asterisk/asterisk/security/advisories/GHSA-c7p6-7mvq-8jq2
+	NOTE: https://github.com/asterisk/asterisk/commit/ef1ad68131ff35445660bd0d36a04cf6f9ba6456 (18.26.2)
 CVE-2025-47779 (Asterisk is an open-source private branch exchange (PBX). Prior to ver ...)
 	- asterisk <unfixed>
 	NOTE: https://github.com/asterisk/asterisk/security/advisories/GHSA-2grh-7mhv-fcfw
+	NOTE: https://github.com/asterisk/asterisk/commit/31fcbf12837ccea6501676b50a0a3bd2dc7d8c51 (18.26.2)
 CVE-2025-46716 (Sandboxie is a sandbox-based isolation software for 32-bit and 64-bit  ...)
 	NOT-FOR-US: Sandboxie
 CVE-2025-46715 (Sandboxie is a sandbox-based isolation software for 32-bit and 64-bit  ...)


=====================================
data/dla-needed.txt
=====================================
@@ -50,6 +50,9 @@ ansible (lee)
 arm-trusted-firmware
   NOTE: 20250303: Added by Front-Desk (rouca)
 --
+asterisk
+  NOTE: 20250524: Added by Front-Desk (Beuc)
+--
 busybox (Sean Whitton)
   NOTE: 20250425: Added by Front-Desk (rouca)
   NOTE: 20250519: Asked maintainers about any pending work and offered help.  (spwhitton)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/2ee97b69bbb3ccd7dc9e99f365833c22e90532c9...67520429e23faa2f6f70df777036c5a6c700b4b4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/2ee97b69bbb3ccd7dc9e99f365833c22e90532c9...67520429e23faa2f6f70df777036c5a6c700b4b4
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250524/ce4ec155/attachment.htm>

More information about the debian-security-tracker-commits mailing list