[Git][security-tracker-team/security-tracker][master] Reference upstream issues for gnutls issues

Mon, 28 Jul 2025 12:21:08 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
81fb03f7 by Salvatore Bonaccorso at 2025-07-28T21:19:49+02:00
Reference upstream issues for gnutls issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5035,21 +5035,25 @@ CVE-2025-32990 (A heap-buffer-overflow (off-by-one) 
flaw was found in the GnuTLS
        {DSA-5962-1}
        - gnutls28 3.8.9-3
        NOTE: 
https://lists.gnupg.org/pipermail/gnutls-help/2025-July/004883.html
+       NOTE: https://gitlab.com/gnutls/gnutls/-/issues/1696
        NOTE: Fixed by: 
https://gitlab.com/gnutls/gnutls/-/commit/408bed40c36a4cc98f0c94a818f682810f731f32
 (3.8.10)
 CVE-2025-32989 (A heap-buffer-overread vulnerability was found in GnuTLS in 
how it han ...)
        {DSA-5962-1}
        - gnutls28 3.8.9-3
        NOTE: 
https://lists.gnupg.org/pipermail/gnutls-help/2025-July/004883.html
+       NOTE: https://gitlab.com/gnutls/gnutls/-/issues/1695
        NOTE: Fixed by: 
https://gitlab.com/gnutls/gnutls/-/commit/8e5ca951257202089246fa37e93a99d210ee5ca2
 (3.8.10)
 CVE-2025-32988 (A flaw was found in GnuTLS. A double-free vulnerability exists 
in GnuT ...)
        {DSA-5962-1}
        - gnutls28 3.8.9-3
        NOTE: 
https://lists.gnupg.org/pipermail/gnutls-help/2025-July/004883.html
+       NOTE: https://gitlab.com/gnutls/gnutls/-/issues/1694
        NOTE: Fixed by: 
https://gitlab.com/gnutls/gnutls/-/commit/608829769cbc247679ffe98841109fc73875e573
 (3.8.10)
 CVE-2025-6395 (A NULL pointer dereference flaw was found in the GnuTLS 
software in _g ...)
        {DSA-5962-1}
        - gnutls28 3.8.9-3
        NOTE: 
https://lists.gnupg.org/pipermail/gnutls-help/2025-July/004883.html
+       NOTE: https://gitlab.com/gnutls/gnutls/-/issues/1718
        NOTE: Fixed by: 
https://gitlab.com/gnutls/gnutls/-/commit/23135619773e6ec087ff2abc65405bd4d5676bad
 (3.8.10)
 CVE-2025-7381 (ImpactThis is an information disclosure vulnerability 
originating from ...)
        NOT-FOR-US: Docker Image for Mautic



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/81fb03f773d1b5945d56470a39e8040d5a24ac5d

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/81fb03f773d1b5945d56470a39e8040d5a24ac5d
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to