[Git][security-tracker-team/security-tracker][master] Add upstream tag references for CVE-2025-11563

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Nov 4 09:33:04 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9f5d112e by Salvatore Bonaccorso at 2025-11-04T10:24:45+01:00
Add upstream tag references for CVE-2025-11563

curl-8_17_0 does not yet exists and it is technically rc-8_17_0 but in
this case be consistent with other tracking and use the curl-8_17_0 tag
already.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2,8 +2,10 @@ CVE-2025-11563
 	- curl <unfixed>
 	[bookworm] - curl <not-affected> (Vulnerable code not present)
 	[bullseye] - curl <not-affected> (Vulnerable code not present)
-	NOTE: https://github.com/curl/wcurl/commit/524f7e733237cd26553dfd
-	NOTE: https://github.com/curl/curl/commit/fb0c014e30e5f4de7aa0d566c
+	NOTE: Introduced with: https://github.com/curl/wcurl/commit/e01d578582a23695ee3cec08a2bff29d61a0bfb4 (v2024.12.08)
+	NOTE: Fixed by: https://github.com/curl/wcurl/commit/524f7e733237cd26553dfd76adda521d3150d852 (v2025.11.04)
+	NOTE: Introduced with: https://github.com/curl/curl/commit/23bed347b38922779382599f8b72c4d762add7bd (curl-8_14_0)
+	NOTE: Fixed by: https://github.com/curl/curl/commit/fb0c014e30e5f4de7aa0d566c52c836a6423da29 (curl-8_17_0)
 	NOTE: Included in Debian since 8.8.0-2
 	NOTE: https://curl.se/docs/CVE-2025-11563.html
 CVE-2025-63293 (FairSketch Rise Ultimate Project Manager & CRM 3.9.4 is vulnerable to  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9f5d112e5df5adac361fdc49029c4f58968e57ee

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9f5d112e5df5adac361fdc49029c4f58968e57ee
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251104/9f17b59c/attachment.htm>

More information about the debian-security-tracker-commits mailing list