[Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2025-47779,CVE-2025-47780/asterisk: reference patches

[Sylvain Beucler (@beuc)]

Sylvain Beucler pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
47b50a8b by Sylvain Beucler at 2025-05-24T19:52:47+02:00
CVE-2025-47779,CVE-2025-47780/asterisk: reference patches

- - - - -
67520429 by Sylvain Beucler at 2025-05-24T19:52:47+02:00
dla: add asterisk

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -467,9 +467,11 @@ CVE-2025-48061 (wire-webapp is the web application for the 
open-source messaging
 CVE-2025-47780 (Asterisk is an open-source private branch exchange (PBX). 
Prior to ver ...)
        - asterisk <unfixed>
        NOTE: 
https://github.com/asterisk/asterisk/security/advisories/GHSA-c7p6-7mvq-8jq2
+       NOTE: 
https://github.com/asterisk/asterisk/commit/ef1ad68131ff35445660bd0d36a04cf6f9ba6456
 (18.26.2)
 CVE-2025-47779 (Asterisk is an open-source private branch exchange (PBX). 
Prior to ver ...)
        - asterisk <unfixed>
        NOTE: 
https://github.com/asterisk/asterisk/security/advisories/GHSA-2grh-7mhv-fcfw
+       NOTE: 
https://github.com/asterisk/asterisk/commit/31fcbf12837ccea6501676b50a0a3bd2dc7d8c51
 (18.26.2)
 CVE-2025-46716 (Sandboxie is a sandbox-based isolation software for 32-bit and 
64-bit  ...)
        NOT-FOR-US: Sandboxie
 CVE-2025-46715 (Sandboxie is a sandbox-based isolation software for 32-bit and 
64-bit  ...)


=====================================
data/dla-needed.txt
=====================================
@@ -50,6 +50,9 @@ ansible (lee)
 arm-trusted-firmware
   NOTE: 20250303: Added by Front-Desk (rouca)
 --
+asterisk
+  NOTE: 20250524: Added by Front-Desk (Beuc)
+--
 busybox (Sean Whitton)
   NOTE: 20250425: Added by Front-Desk (rouca)
   NOTE: 20250519: Asked maintainers about any pending work and offered help.  
(spwhitton)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/2ee97b69bbb3ccd7dc9e99f365833c22e90532c9...67520429e23faa2f6f70df777036c5a6c700b4b4

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/2ee97b69bbb3ccd7dc9e99f365833c22e90532c9...67520429e23faa2f6f70df777036c5a6c700b4b4
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits