[Git][security-tracker-team/security-tracker][master] new thrift issue
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Wed Apr 29 16:18:21 BST 2026
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1fd14f6d by Moritz Muehlenhoff at 2026-04-29T17:17:47+02:00
new thrift issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -506,7 +506,8 @@ CVE-2025-60889 (Insecure deserialization of untrusted input in StellarGroup HPX
CVE-2025-60887 (An issue was discovered in Cista v0.15 and below. Insecure deserializa ...)
NOT-FOR-US: Cista
CVE-2025-48431 (Mismatched Memory Management Routines vulnerability in Apache Thrift c ...)
- TODO: check
+ - thrift <unfixed>
+ NOTE: https://www.openwall.com/lists/oss-security/2026/04/28/8
CVE-2025-10539 (Due to improper TLS certificate validation in the DeskTime Time Tracki ...)
NOT-FOR-US: DeskTime Time Tracking App
CVE-2024-54013 (Penetration Testing engineers at Amazon have identified a security fla ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1fd14f6dea9a70d51a7dbeb77810fd0f9786795a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1fd14f6dea9a70d51a7dbeb77810fd0f9786795a
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260429/79adc001/attachment.htm>
More information about the debian-security-tracker-commits
mailing list