Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5e93321f by Salvatore Bonaccorso at 2025-08-16T08:52:53+02:00
Annotate introducing commits for CVE-2025-50200
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -16504,7 +16504,8 @@ CVE-2025-50200 (RabbitMQ is a messaging and streaming
broker. In versions 3.13.7
[bullseye] - rabbitmq-server <not-affected> (vulnerable code introduced
later)
NOTE:
https://github.com/rabbitmq/rabbitmq-server/security/advisories/GHSA-gh3x-4x42-fvq8
NOTE: Fixed by https://github.com/rabbitmq/rabbitmq-server/pull/13612
- NOTE: Introduced with:
https://github.com/rabbitmq/rabbitmq-server/commit/383ddb16341200f63091e2dd8bb7c0c6346e3ef7
(3.13.1)
+ NOTE: Introduced with:
https://github.com/rabbitmq/rabbitmq-server/commit/383ddb16341200f63091e2dd8bb7c0c6346e3ef7
(v4.1.0-alpha)
+ NOTE: Introduced with (backport):
https://github.com/rabbitmq/rabbitmq-server/commit/a4465d7a728a41dba125c6c0553f124b45dbb6bd
(v3.13.2-rc.1)
CVE-2025-4738 (Improper Neutralization of Special Elements used in an SQL
Command ('S ...)
NOT-FOR-US: Yirmibes Software MY ERP
CVE-2025-49014 (jq is a command-line JSON processor. In version 1.8.0 a heap
use after ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5e93321f83fe1f4674c56ea4b0e63143b87ac6c5
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5e93321f83fe1f4674c56ea4b0e63143b87ac6c5
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
