[Git][security-tracker-team/security-tracker][master] Track fixed version for shibboleth-sp issue
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Sep 6 21:51:08 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a5491401 by Salvatore Bonaccorso at 2025-09-06T22:50:37+02:00
Track fixed version for shibboleth-sp issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -57,7 +57,7 @@ CVE-2023-31322 (Type confusion in the ASP could allow an attacker to pass a malf
CVE-2023-31306 (Improper validation of an array index in the AMD graphics driver softw ...)
TODO: check
CVE-2025-XXXX [SQL injection vulnerability in Service Provider ODBC plugin]
- - shibboleth-sp <unfixed> (bug #1114506)
+ - shibboleth-sp 3.5.1+dfsg-1 (bug #1114506)
NOTE: https://issues.shibboleth.net/jira/browse/SSPCPP-1014
NOTE: https://shibboleth.net/community/advisories/secadv_20250903.txt
CVE-2025-9961 (An authenticated attacker may remotely execute arbitrary code via the ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a5491401c8ce14bfee20b8819faf36a809c7ff6e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a5491401c8ce14bfee20b8819faf36a809c7ff6e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250906/4d4b3b8f/attachment.htm>
More information about the debian-security-tracker-commits
mailing list