[Git][security-tracker-team/security-tracker][master] Add CVE-2025-15661/libssh2
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Jun 19 14:06:41 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
be0bd05d by Salvatore Bonaccorso at 2026-06-19T15:06:13+02:00
Add CVE-2025-15661/libssh2
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -160,7 +160,10 @@ CVE-2026-10034 (The WP DSGVO Tools (GDPR) plugin for WordPress is vulnerable to
CVE-2025-7737 (DoS Vulnerability in 10G iSCSI Interface of Hitachi Virtual Storage Pl ...)
NOT-FOR-US: Hitachi
CVE-2025-15661 (libssh2 through 1.11.1, fixed in commit 2dae302, contains an out-of-bo ...)
- TODO: check
+ - libssh2 <unfixed>
+ NOTE: https://github.com/libssh2/libssh2/pull/1705
+ NOTE: https://github.com/libssh2/libssh2/pull/1717
+ NOTE: Fixed by: https://github.com/libssh2/libssh2/commit/2dae3024897e1898d389835151f4e9606227721d
CVE-2026-55766
- php-guzzlehttp-psr7 2.12.1-1
NOTE: https://github.com/guzzle/psr7/security/advisories/GHSA-vm85-hxw5-5432
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/be0bd05d567555f9db9e0555575c3efc76e61d53
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/be0bd05d567555f9db9e0555575c3efc76e61d53
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260619/9e9f734b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list