[Git][security-tracker-team/security-tracker][master] Update status for CVE-2025-13402/rnp
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Nov 20 19:10:22 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8346b347 by Salvatore Bonaccorso at 2025-11-20T20:09:53+01:00
Update status for CVE-2025-13402/rnp
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,6 +1,9 @@
CVE-2025-13402 [RNP PKESK Session Keys Generated as All-Zero]
- rnp <unfixed> (bug #1121081)
+ [trixie] - rnp <not-affected> (Vulnerable code introduced later)
+ [bookworm] - rnp <not-affected> (Vulnerable code introduced later)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2415863
+ NOTE: Introduced with: https://github.com/rnpgp/rnp/commit/020c61c4814d29d723b62ee4a2d2719a6b397acf (v0.18.0)
CVE-2025-64984 (Kaspersky has fixed a security issue in Kaspersky Endpoint Security fo ...)
NOT-FOR-US: Kaspersky
CVE-2025-63932 (D-Link Router DIR-868L A1 FW106KRb01.bin has an unauthenticated remote ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8346b347d7de3e79fc69380870ffb2ea87cf3f1a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8346b347d7de3e79fc69380870ffb2ea87cf3f1a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251120/def9f2b4/attachment.htm>
More information about the debian-security-tracker-commits
mailing list