[Git][security-tracker-team/security-tracker][master] Add CVE-2025-57632/libsmb2
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Sep 26 15:34:07 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2b0283b1 by Salvatore Bonaccorso at 2025-09-26T16:33:38+02:00
Add CVE-2025-57632/libsmb2
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -170,7 +170,9 @@ CVE-2025-59426 (Lobe Chat is an open-source artificial intelligence chat framewo
CVE-2025-59422 (Dify is an open-source LLM app development platform. In version 1.8.1, ...)
NOT-FOR-US: Dify
CVE-2025-57632 (libsmb2 6.2+ is vulnerable to Buffer Overflow. When processing SMB2 ch ...)
- TODO: check
+ - libsmb2 <unfixed>
+ NOTE: https://gist.github.com/ZjW1nd/0b95b63307ceee7890e88e4abc6f041e
+ NOTE: https://github.com/sahlberg/libsmb2/pull/431
CVE-2025-57623 (A NULL pointer dereference in TOTOLINK N600R firmware v4.3.0cu.7866_B2 ...)
NOT-FOR-US: TOTOLINK
CVE-2025-57446 (An issue in O-RAN Near Realtime RIC ric-plt-submgr in the J-Release en ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2b0283b1371ff273d9e3b37126a6d19eaff7bd4a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2b0283b1371ff273d9e3b37126a6d19eaff7bd4a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250926/cfe176ad/attachment.htm>
More information about the debian-security-tracker-commits
mailing list