[Git][security-tracker-team/security-tracker][master] Add CVE-2025-59419/netty
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Oct 15 22:23:52 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
fb4dccfb by Salvatore Bonaccorso at 2025-10-15T23:23:23+02:00
Add CVE-2025-59419/netty
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -59,7 +59,10 @@ CVE-2025-59481 (A vulnerability exists in an undisclosed iControl REST and BIG-I
CVE-2025-59478 (When a BIG-IP AFM denial-of-service (DoS) protection profile is config ...)
NOT-FOR-US: F5
CVE-2025-59419 (Netty is an asynchronous, event-driven network application framework. ...)
- TODO: check
+ - netty <unfixed>
+ NOTE: https://github.com/netty/netty/security/advisories/GHSA-jq43-27x9-3v86
+ NOTE: https://github.com/netty/netty/commit/1782e8c2060a244c4d4e6f9d9112d5517ca05120 (netty-4.2.7.Final)
+ NOTE: https://github.com/netty/netty/commit/2b3fddd3339cde1601f622b9ce5e54c39f24c3f9 (netty-4.1.128.Final)
CVE-2025-59269 (A stored cross-site scripting (XSS) vulnerability exists in an undiscl ...)
NOT-FOR-US: F5
CVE-2025-59268 (On the BIG-IP system, undisclosed endpoints that contain static non-se ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fb4dccfb05ada831c10d39ab271d92702f2d68fb
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fb4dccfb05ada831c10d39ab271d92702f2d68fb
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251015/5233bd59/attachment.htm>
More information about the debian-security-tracker-commits
mailing list