[Git][security-tracker-team/security-tracker][master] Add CVE-2025-65102/pjproject
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Nov 23 08:12:13 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4dafb026 by Salvatore Bonaccorso at 2025-11-23T09:11:39+01:00
Add CVE-2025-65102/pjproject
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -44,7 +44,10 @@ CVE-2025-65107 (Langfuse is an open source large language model engineering plat
CVE-2025-65106 (LangChain is a framework for building agents and LLM-powered applicati ...)
NOT-FOR-US: LangChain
CVE-2025-65102 (PJSIP is a free and open source multimedia communication library. Prio ...)
- TODO: check
+ - pjproject <removed>
+ NOTE: https://github.com/pjsip/pjproject/security/advisories/GHSA-w5vr-39x7-h8g5
+ NOTE: https://github.com/pjsip/pjproject/commit/6e9bd2e7d25bba26f852771b40693f45da14fa8f
+ TODO: check, might affect asterisk and ring
CVE-2025-65092 (ESF-IDF is the Espressif Internet of Things (IOT) Development Framewor ...)
NOT-FOR-US: ESF-IDF
CVE-2025-43374 (An out-of-bounds read was addressed with improved bounds checking. Thi ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4dafb026d6e87b4d61af5df1e832f0e736f8d929
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4dafb026d6e87b4d61af5df1e832f0e736f8d929
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251123/8b661685/attachment.htm>
More information about the debian-security-tracker-commits
mailing list