[Git][security-tracker-team/security-tracker][master] Add CVE-2025-68670/xrdp bug reference
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Jan 28 10:45:18 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a60ffffb by Salvatore Bonaccorso at 2026-01-28T11:44:48+01:00
Add CVE-2025-68670/xrdp bug reference
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -417,7 +417,7 @@ CVE-2025-69562 (code-projects Mobile Shop Management System 1.0 is vulnerable to
CVE-2025-69559 (code-projects Computer Book Store 1.0 is vulnerable to File Upload in ...)
NOT-FOR-US: code-projects
CVE-2025-68670 (xrdp is an open source RDP server. xrdp before v0.10.5 contains an una ...)
- - xrdp <unfixed>
+ - xrdp <unfixed> (bug #1126537)
NOTE: https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-rwvg-gp87-gh6f
NOTE: https://github.com/neutrinolabs/xrdp/commit/0d6964415ac31f8240ed894de1ff626bf4683eac (v0.10.5)
CVE-2025-65264 (The kernel driver of CPUID CPU-Z v2.17 and earlier does not validate u ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a60ffffb3e47646aaaed033fd2aca0f8babba0fb
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a60ffffb3e47646aaaed033fd2aca0f8babba0fb
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260128/dc96e6ac/attachment.htm>
More information about the debian-security-tracker-commits
mailing list