[Git][security-tracker-team/security-tracker][master] Add upstream tag references for CVE-2025-8277 and CVE-2025-8114
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Nov 4 21:29:44 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b2a44da5 by Salvatore Bonaccorso at 2025-11-04T22:27:55+01:00
Add upstream tag references for CVE-2025-8277 and CVE-2025-8114
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -20699,10 +20699,10 @@ CVE-2025-8277 (A flaw was found in libssh's handling of key exchange (KEX) proce
NOTE: https://git.libssh.org/projects/libssh.git/commit/?id=c9d95ab0c7a52b231bcec09afbea71944ed0d852
NOTE: https://git.libssh.org/projects/libssh.git/commit/?id=ccff22d3787c1355b3f0dcd09fe54d90acc55bf1
NOTE: https://git.libssh.org/projects/libssh.git/commit/?id=4310a696f2d632c6742678077d703d9b9ff3bc0e
- NOTE: https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.11&id=87db2659ec608a977a63eea529f17b9168388d73
- NOTE: https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.11&id=266174a6d36687b65cf90174f06af90b8b27c65f
- NOTE: https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.11&id=8e4d67aa9eda455bfad9ac610e54b7a548d0aa08
- NOTE: https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.11&id=1c763e29d138db87665e98983f468d2dd0f286c1
+ NOTE: https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.11&id=87db2659ec608a977a63eea529f17b9168388d73 (libssh-0.11.3)
+ NOTE: https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.11&id=266174a6d36687b65cf90174f06af90b8b27c65f (libssh-0.11.3)
+ NOTE: https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.11&id=8e4d67aa9eda455bfad9ac610e54b7a548d0aa08 (libssh-0.11.3)
+ NOTE: https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.11&id=1c763e29d138db87665e98983f468d2dd0f286c1 (libssh-0.11.3)
CVE-2025-8008 (A security issue exists in the protected mode of EN4TR devices, where ...)
NOT-FOR-US: Rockwell Automation
CVE-2025-8007 (A security issue exists in the protected mode of 1756-EN4TR and 1756-E ...)
@@ -35079,7 +35079,7 @@ CVE-2025-8114 (A flaw was found in libssh, a library that implements the SSH pro
NOTE: https://gitlab.com/libssh/libssh-mirror/-/issues/317
NOTE: https://www.libssh.org/security/advisories/CVE-2025-8114.txt
NOTE: https://git.libssh.org/projects/libssh.git/commit/?id=53ac23ded4cb2c5463f6c4cd1525331bd578812d
- NOTE: https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.11&id=65f363c9e3a22b90af7f74b5c439a133b1047379
+ NOTE: https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.11&id=65f363c9e3a22b90af7f74b5c439a133b1047379 (libssh-0.11.3)
CVE-2025-8071 (Mine CloudVod plugin for WordPress is vulnerable to Stored Cross-Site ...)
NOT-FOR-US: WordPress plugin
CVE-2025-7966 (The Get Youtube Subs plugin for WordPress is vulnerable to Stored Cros ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b2a44da54e4beefc74d387f117d2c4fca7f0472a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b2a44da54e4beefc74d387f117d2c4fca7f0472a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251104/3e526aec/attachment.htm>
More information about the debian-security-tracker-commits
mailing list