[Git][security-tracker-team/security-tracker][master] Add CVE-2025-14505/node-elliptic
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Jan 9 20:43:19 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c739b37b by Salvatore Bonaccorso at 2026-01-09T21:42:47+01:00
Add CVE-2025-14505/node-elliptic
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -243,7 +243,8 @@ CVE-2025-14657 (The Eventin \u2013 Event Manager, Events Calendar, Event Tickets
CVE-2025-14574 (The weDocs plugin for WordPress is vulnerable to Sensitive Information ...)
NOT-FOR-US: WordPress plugin
CVE-2025-14505 (The ECDSA implementation of the Elliptic package generates incorrect s ...)
- TODO: check
+ - node-elliptic <unfixed>
+ NOTE: https://github.com/indutny/elliptic/issues/321
CVE-2025-14436 (The Brevo for WooCommerce plugin for WordPress is vulnerable to Stored ...)
NOT-FOR-US: WordPress plugin
CVE-2025-14146 (The Booking Calendar plugin for WordPress is vulnerable to Sensitive I ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c739b37b89f5c792d105f42227e7c0c6a20860a4
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c739b37b89f5c792d105f42227e7c0c6a20860a4
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260109/eba256c2/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list