[Git][security-tracker-team/security-tracker][master] Update CVE-2025-58056/netty
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Nov 16 08:01:21 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
110638eb by Salvatore Bonaccorso at 2025-11-16T08:57:45+01:00
Update CVE-2025-58056/netty
The patch applied only contains test changes and the changelog entry
closed as well the wrong bug (#1113994 which is for another netty CVE).
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -26799,7 +26799,7 @@ CVE-2025-58057 (Netty is an asynchronous event-driven network application framew
NOTE: Fixed by: https://github.com/netty/netty/commit/9d804c54ce962408ae6418255a83a13924f7145d (netty-4.2.5.Final)
NOTE: Fixed by: https://github.com/netty/netty/commit/34894ac73b02efefeacd9c0972780b32dc3de04f (netty-4.1.125.Final)
CVE-2025-58056 (Netty is an asynchronous event-driven network application framework fo ...)
- - netty 1:4.1.48-11 (bug #1113995)
+ - netty <unfixed> (bug #1113995)
NOTE: https://github.com/netty/netty/security/advisories/GHSA-fghv-69vj-qj49
NOTE: https://github.com/netty/netty/issues/15522
NOTE: https://github.com/netty/netty/pull/15611
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/110638eb5c66ab2bc996ed143da07e92dfc787c9
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/110638eb5c66ab2bc996ed143da07e92dfc787c9
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251116/edba8a9d/attachment.htm>
More information about the debian-security-tracker-commits
mailing list