[Git][security-tracker-team/security-tracker][master] Add CVE-2025-9784/undertow
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Sep 3 07:56:11 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
673b5b5f by Salvatore Bonaccorso at 2025-09-03T08:55:44+02:00
Add CVE-2025-9784/undertow
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5,7 +5,9 @@ CVE-2025-9829 (A vulnerability was identified in PHPGurukul Beauty Parlour Manag
CVE-2025-9828 (A vulnerability was determined in Tenda CP6 11.10.00.243. The affected ...)
NOT-FOR-US: Tenda
CVE-2025-9784 (A flaw was found in Undertow where malformed client requests can trigg ...)
- TODO: check
+ - undertow <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2392306
+ NOTE: Dedicated CVE for undertow for the "MadeYouReset" DoS attack
CVE-2025-9696 (The SunPower PVS6's BluetoothLE interface is vulnerable due to its use ...)
TODO: check
CVE-2025-9573 (The ns_backup extension through 13.0.2 for TYPO3 allows command inject ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/673b5b5f722eca69854d3dbe275375c2702cec40
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/673b5b5f722eca69854d3dbe275375c2702cec40
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250903/fbd79b60/attachment.htm>
More information about the debian-security-tracker-commits
mailing list