[Git][security-tracker-team/security-tracker][master] Add VE-2025-10158/rsync
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Nov 18 21:00:41 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5e2ae01f by Salvatore Bonaccorso at 2025-11-18T22:00:08+01:00
Add VE-2025-10158/rsync
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -332,7 +332,8 @@ CVE-2025-11620 (The Multiple Roles per User plugin for WordPress is vulnerable t
CVE-2025-11427 (The WP Migrate Lite \u2013 WordPress Migration Made Easy plugin for Wo ...)
NOT-FOR-US: WordPress plugin
CVE-2025-10158 (A malicious client acting as the receiver of an rsync file transfer ca ...)
- TODO: check
+ - rsync <unfixed>
+ NOTE: Fixed by: https://github.com/RsyncProject/rsync/commit/797e17fc4a6f15e3b1756538a9f812b63942686f
CVE-2025-8727 (There is a vulnerability in the Supermicro BMC web function at Supermi ...)
NOT-FOR-US: Supermicro
CVE-2025-8693 (A post-authentication command injection vulnerability in the "priv" pa ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5e2ae01f40c4f840c9454d87ed9c2e0e77afd634
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5e2ae01f40c4f840c9454d87ed9c2e0e77afd634
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251118/97aae2ca/attachment.htm>
More information about the debian-security-tracker-commits
mailing list