[Git][security-tracker-team/security-tracker][master] Add new lasso issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Nov 5 21:09:37 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b108b930 by Salvatore Bonaccorso at 2025-11-05T22:09:05+01:00
Add new lasso issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -51,15 +51,19 @@ CVE-2025-55108 (The Control-M/Agent is vulnerable to unauthenticated remote code
 CVE-2025-52602 (HCL BigFix Query is affected by a sensitive information disclosure in  ...)
 	NOT-FOR-US: HCL
 CVE-2025-47151 (A type confusion vulnerability exists in the lasso_node_impl_init_from ...)
-	TODO: check
+	- lasso <unfixed>
+	NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2025-2193
 CVE-2025-46784 (A denial of service vulnerability exists in the lasso_node_init_from_m ...)
-	TODO: check
+	- lasso <unfixed>
+	NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2025-2195
 CVE-2025-46705 (A denial of service vulnerability exists in the g_assert_not_reached f ...)
-	TODO: check
+	- lasso <unfixed>
+	NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2025-2196
 CVE-2025-46424 (Dell CloudLink, versions prior to 8.2, contain use of a Cryptographic  ...)
 	NOT-FOR-US: Dell / EMC
 CVE-2025-46404 (A denial of service vulnerability exists in the lasso_provider_verify_ ...)
-	TODO: check
+	- lasso <unfixed>
+	NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2025-2194
 CVE-2025-46366 (Dell CloudLink, versions prior to 8.1.1, contain a vulnerability where ...)
 	NOT-FOR-US: Dell / EMC
 CVE-2025-46365 (Dell CloudLink, versions prior 8.1.1, contain a Command Injection vuln ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b108b930cb68568e1af061b0d85a4f588e516971

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b108b930cb68568e1af061b0d85a4f588e516971
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251105/49f14fbf/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list