[Git][security-tracker-team/security-tracker][master] Add CVE-2026-25765/ruby-faraday
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Feb 10 20:43:23 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4d9d6df9 by Salvatore Bonaccorso at 2026-02-10T21:42:14+01:00
Add CVE-2026-25765/ruby-faraday
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -557,7 +557,9 @@ CVE-2026-25806 (PlaciPy is a placement management system designed for educationa
CVE-2026-25791 (Sliver is a command and control framework that uses a custom Wireguard ...)
NOT-FOR-US: Sliver
CVE-2026-25765 (Faraday is an HTTP client library abstraction layer that provides a co ...)
- TODO: check
+ - ruby-faraday <unfixed>
+ NOTE: https://github.com/lostisland/faraday/security/advisories/GHSA-33mh-2634-fwr2
+ NOTE: Fixed by: https://github.com/lostisland/faraday/commit/a6d3a3a0bf59c2ab307d0abd91bc126aef5561bc (v2.14.1)
CVE-2026-25761 (Super-linter is a combination of multiple linters to run as a GitHub A ...)
NOT-FOR-US: super-linter
CVE-2026-25740 (captive browser, a dedicated Chrome instance to log into captive porta ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4d9d6df957035a94e87153013cde1981af922464
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4d9d6df957035a94e87153013cde1981af922464
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260210/824fad6f/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list