[Git][security-tracker-team/security-tracker][master] Update information on CVE-2025-23016

Salvatore Bonaccorso (@carnil) Mon, 14 Apr 2025 12:24:41 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
752da5c6 by Salvatore Bonaccorso at 2025-04-14T21:16:42+02:00
Update information on CVE-2025-23016

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -31333,6 +31333,8 @@ CVE-2025-23016 (FastCGI fcgi2 (aka fcgi) 2.x through 
2.4.4 has an integer overfl
        [bookworm] - libfcgi <no-dsa> (Minor issue)
        [bullseye] - libfcgi <postponed> (Minor issue, revisit when fixed 
upstream)
        NOTE: https://github.com/FastCGI-Archives/fcgi2/issues/67
+       NOTE: https://github.com/FastCGI-Archives/fcgi2/pull/74
+       NOTE: Fixed by: 
https://github.com/FastCGI-Archives/fcgi2/commit/b0eabcaf4d4f371514891a52115c746815c2ff15
 (2.4.5)
 CVE-2025-22949 (Tenda ac9 v1.0 firmware v15.03.05.19 is vulnerable to command 
injectio ...)
        NOT-FOR-US: Tenda
 CVE-2025-22946 (Tenda ac9 v1.0 firmware v15.03.05.19 contains a stack overflow 
vulnera ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/752da5c64f53728eddad878db5142416c7b55d75

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/752da5c64f53728eddad878db5142416c7b55d75
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Update information on CVE-2025-23016

Reply via email to