[Git][security-tracker-team/security-tracker][master] CVE-2025-55163 netty

[Bastien Roucariès (@rouca)]

Bastien Roucariès pushed to branch master at Debian Security Tracker / security-tracker


Commits:
dec89e93 by Bastien Roucariès at 2025-11-05T09:22:50+01:00
CVE-2025-55163 netty

According to upstream https://github.com/netty/netty/pull/15518#issuecomment-3489699991

Annote therefore tracker

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -29768,6 +29768,8 @@ CVE-2025-55279 (This vulnerability exists in ZKTeco WL20 due to hard-coded priva
 CVE-2025-55163 (Netty is an asynchronous, event-driven network application framework.  ...)
 	- netty <unfixed> (bug #1111105)
 	NOTE: https://github.com/netty/netty/security/advisories/GHSA-prj3-ccx8-p6x4
+	NOTE: Fixed by [1/2] https://github.com/netty/netty/commit/be53dc3c9acd9af2e20d0c3c07cd77115a594cf1 (netty-4.1.124.Final)
+	NOTE: Fixed by [2/2] https://github.com/netty/netty/commit/009bd17b38a39fb1eecf9d22ea8ae8108afaac59 (netty-4.1.124.Final)
 CVE-2025-55160 (ImageMagick is free and open-source software used for editing and mani ...)
 	- imagemagick 8:7.1.2.1+dfsg1-1 (bug #1111104; unimportant)
 	NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-6hgw-6x87-578x



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dec89e93cd8daa7d840fbbaed77b993df059263a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dec89e93cd8daa7d840fbbaed77b993df059263a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251105/97e56631/attachment-0001.htm>