[Git][security-tracker-team/security-tracker][master] Add three netsurf issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Nov 1 09:05:01 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ab5123cd by Salvatore Bonaccorso at 2025-11-01T10:02:39+01:00
Add three netsurf issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,14 @@
+CVE-2025-45663 [Disclosure of uninitialized memory in _dom_event_initialise]
+ - netsurf <unfixed>
+ NOTE: https://github.com/Fysac/netsurf-disclosure/tree/main/CVE-2025-45663
+ NOTE: https://github.com/netsurf-browser/libdom/commit/9ea069f36e5de5f52d7155a71e2d536eb94de141
+CVE-2025-29699 [Use-after-free in _dom_node_set_text_content]
+ - netsurf <unfixed>
+ NOTE: https://github.com/Fysac/netsurf-disclosure/tree/main/CVE-2025-29699
+CVE-2024-51317 [Use-after-free in _dom_node_normalize]
+ - netsurf <unfixed>
+ NOTE: https://github.com/Fysac/netsurf-disclosure/tree/main/CVE-2024-51317
+ NOTE: https://github.com/netsurf-browser/libdom/commit/7d317df204d18f161f0a8ffed958ef60eb2692fe
CVE-2025-62875 [Denial-of-Service via UNIX Domain Socket]
- opensmtpd <unfixed>
[trixie] - opensmtpd <no-dsa> (Minor issue)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ab5123cdcfa09fa32017a7c698f42d768c6751a9
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ab5123cdcfa09fa32017a7c698f42d768c6751a9
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251101/3713adf7/attachment.htm>
More information about the debian-security-tracker-commits
mailing list