Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5843d0d6 by Salvatore Bonaccorso at 2025-04-24T08:52:25+02:00
Add Debian bug references for busybox issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
CVE-2025-46394 (In tar in BusyBox through 1.37.0, a TAR archive can have
filenames hid ...)
- - busybox <unfixed>
+ - busybox <unfixed> (bug #1104008)
NOTE: https://bugs.busybox.net/show_bug.cgi?id=16018
NOTE: https://www.openwall.com/lists/oss-security/2025/04/23/1
CVE-2025-46393 (In multispectral MIFF image processing in ImageMagick before
7.1.1-44, ...)
@@ -123,7 +123,7 @@ CVE-2025-1046 (Luxion KeyShot SKP File Parsing
Use-After-Free Remote Code Execut
CVE-2025-1045 (Luxion KeyShot Viewer KSP File Parsing Heap-based Buffer
Overflow Remo ...)
NOT-FOR-US: Luxion
CVE-2024-58251 (In netstat in BusyBox through 1.37.0, local users can launch
of networ ...)
- - busybox <unfixed>
+ - busybox <unfixed> (bug #1104009)
NOTE: https://bugs.busybox.net/show_bug.cgi?id=15922
CVE-2024-47829 (pnpm is a package manager. Prior to version 10.0.0, the path
shortenin ...)
NOT-FOR-US: pnpm
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5843d0d621440d1817240b455fc99b7914a29767
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5843d0d621440d1817240b455fc99b7914a29767
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
