Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
495e3d3f by security tracker role at 2026-03-06T08:12:53+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,341 @@
+CVE-2026-3616 (A vulnerability was detected in DefaultFuction Jeson Customer
Relation ...)
+ TODO: check
+CVE-2026-3613 (A vulnerability was identified in Wavlink WL-NU516U1 V240425.
This vul ...)
+ TODO: check
+CVE-2026-3612 (A vulnerability was determined in Wavlink WL-NU516U1 V240425.
This aff ...)
+ TODO: check
+CVE-2026-3610 (A vulnerability was found in HSC Cybersecurity Mailinspector up
to 5.3 ...)
+ TODO: check
+CVE-2026-3606 (A vulnerability has been found in Ettercap 0.8.4-Garofalo.
Affected by ...)
+ TODO: check
+CVE-2026-2830 (The WP All Import \u2013 Drag & Drop Import for CSV, XML, Excel
& Goog ...)
+ TODO: check
+CVE-2026-2593 (The Greenshift \u2013 animation and page builder blocks plugin
for Wor ...)
+ TODO: check
+CVE-2026-2589 (The Greenshift \u2013 animation and page builder blocks plugin
for Wor ...)
+ TODO: check
+CVE-2026-2446 (The PowerPack for LearnDash WordPress plugin before 1.3.0 does
not hav ...)
+ TODO: check
+CVE-2026-2331 (An attacker may perform unauthenticated read and write
operations on s ...)
+ TODO: check
+CVE-2026-2330 (An attacker may access restricted filesystem areas on the
device via t ...)
+ TODO: check
+CVE-2026-29613 (OpenClaw versions prior to 2026.2.12 contain a vulnerability
in the Bl ...)
+ TODO: check
+CVE-2026-29612 (OpenClaw versions prior to 2026.2.14 decode base64-backed
media inputs ...)
+ TODO: check
+CVE-2026-29611 (OpenClaw versions prior to 2026.2.14 contain a local file
inclusion vu ...)
+ TODO: check
+CVE-2026-29610 (OpenClaw versions prior to 2026.2.14 contain a command
hijacking vulne ...)
+ TODO: check
+CVE-2026-29609 (OpenClaw versions prior to 2026.2.14 contain a denial of
service vulne ...)
+ TODO: check
+CVE-2026-29606 (OpenClaw versions prior to 2026.2.14 contain a webhook
signature-verif ...)
+ TODO: check
+CVE-2026-29188 (File Browser provides a file managing interface within a
specified dir ...)
+ TODO: check
+CVE-2026-29183 (SiYuan is a personal knowledge management system. Prior to
version 3.5 ...)
+ TODO: check
+CVE-2026-29093 (WWBN AVideo is an open source video platform. Prior to version
24.0, t ...)
+ TODO: check
+CVE-2026-29084 (Gokapi is a self-hosted file sharing server with automatic
expiration ...)
+ TODO: check
+CVE-2026-29081 (Frappe is a full-stack web application framework. Prior to
versions 14 ...)
+ TODO: check
+CVE-2026-29077 (Frappe is a full-stack web application framework. Prior to
versions 15 ...)
+ TODO: check
+CVE-2026-29074 (SVGO, short for SVG Optimizer, is a Node.js library and
command-line a ...)
+ TODO: check
+CVE-2026-29073 (SiYuan is a personal knowledge management system. Prior to
version 3.6 ...)
+ TODO: check
+CVE-2026-29068 (PJSIP is a free and open source multimedia communication
library writt ...)
+ TODO: check
+CVE-2026-29065 (changedetection.io is a free open source web page change
detection too ...)
+ TODO: check
+CVE-2026-29062 (jackson-core contains core low-level incremental ("streaming")
parser ...)
+ TODO: check
+CVE-2026-29061 (Gokapi is a self-hosted file sharing server with automatic
expiration ...)
+ TODO: check
+CVE-2026-29060 (Gokapi is a self-hosted file sharing server with automatic
expiration ...)
+ TODO: check
+CVE-2026-29059 (Windmill is an open-source developer platform for internal
code: APIs, ...)
+ TODO: check
+CVE-2026-29058 (AVideo is a video-sharing Platform software. Prior to version
7.0, an ...)
+ TODO: check
+CVE-2026-29049 (melange allows users to build apk packages using declarative
pipelines ...)
+ TODO: check
+CVE-2026-29048 (HumHub is an Open Source Enterprise Social Network. In version
1.18.0, ...)
+ TODO: check
+CVE-2026-29046 (TinyWeb is a web server (HTTP, HTTPS) written in Delphi for
Win32. Pri ...)
+ TODO: check
+CVE-2026-29042 (Nuclio is a "Serverless" framework for Real-Time Events and
Data Proce ...)
+ TODO: check
+CVE-2026-29041 (Chamilo is a learning management system. Prior to version
1.11.34, Cha ...)
+ TODO: check
+CVE-2026-29039 (changedetection.io is a free open source web page change
detection too ...)
+ TODO: check
+CVE-2026-29038 (changedetection.io is a free open source web page change
detection too ...)
+ TODO: check
+CVE-2026-28804 (pypdf is a free and open-source pure-python PDF library. Prior
to vers ...)
+ TODO: check
+CVE-2026-28802 (Authlib is a Python library which builds OAuth and OpenID
Connect serv ...)
+ TODO: check
+CVE-2026-28801 (Natro Macro is an open-source Bee Swarm Simulator macro
written in Aut ...)
+ TODO: check
+CVE-2026-28800 (Natro Macro is an open-source Bee Swarm Simulator macro
written in Aut ...)
+ TODO: check
+CVE-2026-28799 (PJSIP is a free and open source multimedia communication
library writt ...)
+ TODO: check
+CVE-2026-28795 (OpenChatBI is an intelligent chat-based BI tool powered by
large langu ...)
+ TODO: check
+CVE-2026-28794 (oRPC is an tool that helps build APIs that are end-to-end
type-safe an ...)
+ TODO: check
+CVE-2026-28787 (OneUptime is a solution for monitoring and managing online
services. I ...)
+ TODO: check
+CVE-2026-28785 (Ghostfolio is an open source wealth management software. Prior
to vers ...)
+ TODO: check
+CVE-2026-28727 (Local privilege escalation due to insecure Unix socket
permissions. Th ...)
+ TODO: check
+CVE-2026-28726 (Sensitive information disclosure due to improper access
control. The f ...)
+ TODO: check
+CVE-2026-28725 (Sensitive information disclosure due to improper configuration
of a he ...)
+ TODO: check
+CVE-2026-28724 (Unauthorized data access due to insufficient access control
validation ...)
+ TODO: check
+CVE-2026-28723 (Unauthorized report deletion due to insufficient access
control. The f ...)
+ TODO: check
+CVE-2026-28722 (Local privilege escalation due to improper soft link handling.
The fol ...)
+ TODO: check
+CVE-2026-28721 (Local privilege escalation due to improper soft link handling.
The fol ...)
+ TODO: check
+CVE-2026-28720 (Unauthorized modification of settings due to insufficient
authorizatio ...)
+ TODO: check
+CVE-2026-28719 (Unauthorized resource manipulation due to improper
authorization check ...)
+ TODO: check
+CVE-2026-28718 (Denial of service due to insufficient input validation in
authenticati ...)
+ TODO: check
+CVE-2026-28717 (Local privilege escalation due to improper directory
permissions. The ...)
+ TODO: check
+CVE-2026-28716 (Information disclosure and manipulation due to improper
authorization ...)
+ TODO: check
+CVE-2026-28715 (Sensitive information disclosure due to improper authorization
checks. ...)
+ TODO: check
+CVE-2026-28714 (Unnecessary transmission of sensitive cryptographic material.
The foll ...)
+ TODO: check
+CVE-2026-28713 (Default credentials set for local privileged user in Virtual
Appliance ...)
+ TODO: check
+CVE-2026-28712 (Local privilege escalation due to DLL hijacking vulnerability.
The fol ...)
+ TODO: check
+CVE-2026-28711 (Local privilege escalation due to DLL hijacking vulnerability.
The fol ...)
+ TODO: check
+CVE-2026-28710 (Sensitive information disclosure and manipulation due to
improper auth ...)
+ TODO: check
+CVE-2026-28709 (Unauthorized resource manipulation due to improper
authorization check ...)
+ TODO: check
+CVE-2026-28685 (Kimai is a web-based multi-user time-tracking application.
Prior to ve ...)
+ TODO: check
+CVE-2026-28683 (Gokapi is a self-hosted file sharing server with automatic
expiration ...)
+ TODO: check
+CVE-2026-28682 (Gokapi is a self-hosted file sharing server with automatic
expiration ...)
+ TODO: check
+CVE-2026-28681 (Internet Routing Registry daemon version 4 is an IRR database
server, ...)
+ TODO: check
+CVE-2026-28680 (Ghostfolio is an open source wealth management software. Prior
to vers ...)
+ TODO: check
+CVE-2026-28679 (Home-Gallery.org is a self-hosted open-source web gallery to
browse pe ...)
+ TODO: check
+CVE-2026-28677 (OpenSift is an AI study tool that sifts through large datasets
using s ...)
+ TODO: check
+CVE-2026-28676 (OpenSift is an AI study tool that sifts through large datasets
using s ...)
+ TODO: check
+CVE-2026-28675 (OpenSift is an AI study tool that sifts through large datasets
using s ...)
+ TODO: check
+CVE-2026-28509 (LangBot is a global IM bot platform designed for LLMs. Prior
to versio ...)
+ TODO: check
+CVE-2026-28508 (Idno is a social publishing platform. Prior to version 1.6.4,
a logic ...)
+ TODO: check
+CVE-2026-28507 (Idno is a social publishing platform. Prior to version 1.6.4,
there is ...)
+ TODO: check
+CVE-2026-28502 (WWBN AVideo is an open source video platform. Prior to version
24.0, a ...)
+ TODO: check
+CVE-2026-28501 (WWBN AVideo is an open source video platform. Prior to version
24.0, a ...)
+ TODO: check
+CVE-2026-28497 (TinyWeb is a web server (HTTP, HTTPS) written in Delphi for
Win32. Pri ...)
+ TODO: check
+CVE-2026-28492 (File Browser provides a file managing interface within a
specified dir ...)
+ TODO: check
+CVE-2026-28486 (OpenClaw versions 2026.1.16-2 prior to 2026.2.14 contain a
path traver ...)
+ TODO: check
+CVE-2026-28485 (OpenClaw versions 2026.1.5 prior to 2026.2.12 fail to enforce
mandator ...)
+ TODO: check
+CVE-2026-28484 (OpenClaw versions prior to 2026.2.15 contain an option
injection vulne ...)
+ TODO: check
+CVE-2026-28482 (OpenClaw versions prior to 2026.2.12 construct transcript file
paths u ...)
+ TODO: check
+CVE-2026-28481 (OpenClaw versions 2026.1.30 and earlier, contain an
information disclo ...)
+ TODO: check
+CVE-2026-28480 (OpenClaw versions prior to 2026.2.14 contain an authorization
bypass v ...)
+ TODO: check
+CVE-2026-28479 (OpenClaw versions prior to 2026.2.15 use SHA-1 to hash sandbox
identif ...)
+ TODO: check
+CVE-2026-28478 (OpenClaw versions prior to 2026.2.13 contain a denial of
service vulne ...)
+ TODO: check
+CVE-2026-28477 (OpenClaw versions prior to 2026.2.14 contain an oauth state
validation ...)
+ TODO: check
+CVE-2026-28476 (OpenClaw versions prior to 2026.2.14 contain a server-side
request for ...)
+ TODO: check
+CVE-2026-28475 (OpenClaw versions prior to 2026.2.13 use non-constant-time
string comp ...)
+ TODO: check
+CVE-2026-28474 (OpenClaw's Nextcloud Talk plugin versions prior to 2026.2.6
accept equ ...)
+ TODO: check
+CVE-2026-28473 (OpenClaw versions prior to 2026.2.2 contain an authorization
bypass vu ...)
+ TODO: check
+CVE-2026-28472 (OpenClaw versions prior to 2026.2.2 contain a vulnerability in
the gat ...)
+ TODO: check
+CVE-2026-28471 (OpenClaw version 2026.1.14-1 prior to 2026.2.2, with the
Matrix plugin ...)
+ TODO: check
+CVE-2026-28470 (OpenClaw versions prior to 2026.2.2 contain an exec approvals
(must be ...)
+ TODO: check
+CVE-2026-28469 (OpenClaw versions prior to 2026.2.14 contain a webhook routing
vulnera ...)
+ TODO: check
+CVE-2026-28468 (OpenClaw versions 2026.1.29-beta.1 prior to 2026.2.14 contain
a vulner ...)
+ TODO: check
+CVE-2026-28467 (OpenClaw versions prior to 2026.2.2 contain a server-side
request forg ...)
+ TODO: check
+CVE-2026-28466 (OpenClaw versions prior to 2026.2.14 contain a vulnerability
in the ga ...)
+ TODO: check
+CVE-2026-28465 (OpenClaw's voice-call plugin versions before 2026.2.3 contain
an impro ...)
+ TODO: check
+CVE-2026-28464 (OpenClaw versions prior to 2026.2.12 use non-constant-time
string comp ...)
+ TODO: check
+CVE-2026-28463 (OpenClaw exec-approvals allowlist validation checks
pre-expansion argv ...)
+ TODO: check
+CVE-2026-28462 (OpenClaw versions prior to 2026.2.13 contain a vulnerability
in the br ...)
+ TODO: check
+CVE-2026-28459 (OpenClaw versions prior to 2026.2.12 fail to validate the
sessionFile ...)
+ TODO: check
+CVE-2026-28458 (OpenClaw version 2026.1.20 prior to 2026.2.1 contains a
vulnerability ...)
+ TODO: check
+CVE-2026-28457 (OpenClaw versions prior to 2026.2.14 contain a path traversal
vulnerab ...)
+ TODO: check
+CVE-2026-28456 (OpenClaw versions 2026.1.5 prior to 2026.2.14 contain a
vulnerability ...)
+ TODO: check
+CVE-2026-28454 (OpenClaw versions prior to 2026.2.2 fail to validate webhook
secrets i ...)
+ TODO: check
+CVE-2026-28453 (OpenClaw versions prior to 2026.2.14 fail to validate TAR
archive entr ...)
+ TODO: check
+CVE-2026-28452 (OpenClaw versions prior to 2026.2.14 contain a denial of
service vulne ...)
+ TODO: check
+CVE-2026-28451 (OpenClaw versions prior to 2026.2.14 contain server-side
request forge ...)
+ TODO: check
+CVE-2026-28450 (OpenClaw versions prior to 2026.2.12 with the optional Nostr
plugin en ...)
+ TODO: check
+CVE-2026-28448 (OpenClaw versions 2026.1.29 prior to 2026.2.1 contain a
vulnerability ...)
+ TODO: check
+CVE-2026-28447 (OpenClaw versions 2026.1.29-beta.1 prior to 2026.2.1 contain a
path tr ...)
+ TODO: check
+CVE-2026-28446 (OpenClaw versions prior to 2026.2.1 with the voice-call
extension inst ...)
+ TODO: check
+CVE-2026-28443 (OpenReplay is a self-hosted session replay suite. Prior to
version 1.2 ...)
+ TODO: check
+CVE-2026-28442 (ZimaOS is a fork of CasaOS, an operating system for Zima
devices and x ...)
+ TODO: check
+CVE-2026-28438 (CocoIndex is a data transformation framework for AI. Prior to
version ...)
+ TODO: check
+CVE-2026-28436 (Frappe is a full-stack web application framework. Prior to
versions 16 ...)
+ TODO: check
+CVE-2026-28429 (Talishar is a fan-made Flesh and Blood project. Prior to
commit 6be387 ...)
+ TODO: check
+CVE-2026-28428 (Talishar is a fan-made Flesh and Blood project. Prior to
commit a9c218 ...)
+ TODO: check
+CVE-2026-28413 (Products.isurlinportal is a replacement for isURLInPortal
method in Pl ...)
+ TODO: check
+CVE-2026-28410 (The Graph is an indexing protocol for querying networks like
Ethereum, ...)
+ TODO: check
+CVE-2026-28405 (MarkUs is a web application for the submission and grading of
student ...)
+ TODO: check
+CVE-2026-28395 (OpenClaw version 2026.1.14-1 prior to 2026.2.12 contain an
improper ne ...)
+ TODO: check
+CVE-2026-28394 (OpenClaw versions prior to 2026.2.15 contain a denial of
service vulne ...)
+ TODO: check
+CVE-2026-28393 (OpenClaw versions 2.0.0-beta3 prior to 2026.2.14 contain a
path traver ...)
+ TODO: check
+CVE-2026-28392 (OpenClaw versions prior to 2026.2.14 contain a privilege
escalation vu ...)
+ TODO: check
+CVE-2026-28391 (OpenClaw versions prior to 2026.2.2 fail to properly validate
Windows ...)
+ TODO: check
+CVE-2026-27807 (MarkUs is a web application for the submission and grading of
student ...)
+ TODO: check
+CVE-2026-27778 (The WebSocket Application Programming Interface lacks
restrictions on ...)
+ TODO: check
+CVE-2026-27770 (Charging station authentication identifiers are publicly
accessible vi ...)
+ TODO: check
+CVE-2026-27605 (Chartbrew is an open-source web application that can connect
directly ...)
+ TODO: check
+CVE-2026-27603 (Chartbrew is an open-source web application that can connect
directly ...)
+ TODO: check
+CVE-2026-27005 (Chartbrew is an open-source web application that can connect
directly ...)
+ TODO: check
+CVE-2026-26125 (Payment Orchestrator Service Elevation of Privilege
Vulnerability)
+ TODO: check
+CVE-2026-26124 (Microsoft ACI Confidential Containers Elevation of Privilege
Vulnerabi ...)
+ TODO: check
+CVE-2026-26122 (Microsoft ACI Confidential Containers Information Disclosure
Vulnerabi ...)
+ TODO: check
+CVE-2026-25962 (MarkUs is a web application for the submission and grading of
student ...)
+ TODO: check
+CVE-2026-25888 (Chartbrew is an open-source web application that can connect
directly ...)
+ TODO: check
+CVE-2026-25887 (Chartbrew is an open-source web application that can connect
directly ...)
+ TODO: check
+CVE-2026-25877 (Chartbrew is an open-source web application that can connect
directly ...)
+ TODO: check
+CVE-2026-24912 (The WebSocket backend uses charging station identifiers to
uniquely as ...)
+ TODO: check
+CVE-2026-23651 (Permissive regular expression in Azure Compute Gallery allows
an autho ...)
+ TODO: check
+CVE-2026-22723 (Inappropriate user token revocation due to a logic error in
the token ...)
+ TODO: check
+CVE-2026-22552 (WebSocket endpoints lack proper authentication mechanisms,
enabling at ...)
+ TODO: check
+CVE-2026-21622 (Insufficient Session Expiration vulnerability in hexpm
hexpm/hexpm ('E ...)
+ TODO: check
+CVE-2026-21536 (Microsoft Devices Pricing Program Remote Code Execution
Vulnerability)
+ TODO: check
+CVE-2026-1128 (The WP eCommerce WordPress plugin through 3.15.1 does not have
CSRF ch ...)
+ TODO: check
+CVE-2026-0848 (NLTK versions <=3.9.2 are vulnerable to arbitrary code
execution due t ...)
+ TODO: check
+CVE-2025-70995 (An issue in Aranda Service Desk Web Edition (ASDK API 8.6)
allows auth ...)
+ TODO: check
+CVE-2025-70949 (An observable timing discrepancy in @perfood/couch-auth
v0.26.0 allows ...)
+ TODO: check
+CVE-2025-70948 (A host header injection vulnerability in the mailer component
of @perf ...)
+ TODO: check
+CVE-2025-70614 (OpenCode Systems OC Messaging / USSD Gateway OC Release 6.32.2
contain ...)
+ TODO: check
+CVE-2025-59544 (Chamilo is a learning management system. Prior to version
1.11.34, the ...)
+ TODO: check
+CVE-2025-59543 (Chamilo is a learning management system. Prior to version
1.11.34, the ...)
+ TODO: check
+CVE-2025-59542 (Chamilo is a learning management system. Prior to version
1.11.34, the ...)
+ TODO: check
+CVE-2025-59541 (Chamilo is a learning management system. Prior to version
1.11.34, a C ...)
+ TODO: check
+CVE-2025-59540 (Chamilo is a learning management system. Prior to version
1.11.34, a s ...)
+ TODO: check
+CVE-2025-55289 (Chamilo is a learning management system. Prior to version
1.11.34, the ...)
+ TODO: check
+CVE-2025-55208 (Chamilo is a learning management system. Versions prior to
1.11.34 hav ...)
+ TODO: check
+CVE-2025-30413 (Credentials are not deleted from Acronis Agent after plan
revocation. ...)
+ TODO: check
+CVE-2025-11792 (Local privilege escalation due to DLL hijacking vulnerability.
The fol ...)
+ TODO: check
+CVE-2025-11791 (Sensitive information disclosure and manipulation due to
insufficient ...)
+ TODO: check
+CVE-2025-11790 (Credentials are not deleted from Acronis Agent after plan
revocation. ...)
+ TODO: check
CVE-2026-3598 (Use of a Broken or Risky Cryptographic Algorithm vulnerability
in rust ...)
NOT-FOR-US: RustDesk Server Pro (not same as src:rustdesk, itp'ed
#1038942)
CVE-2026-3459 (The Drag and Drop Multiple File Upload - Contact Form 7 plugin
for Wor ...)
@@ -849,33 +1187,43 @@ CVE-2024-57854 (Net::NSCA::Client versions through
0.009002 for Perl uses a poor
CVE-2025-40926 (Plack::Middleware::Session::Simple versions through 0.04 for
Perl gene ...)
NOT-FOR-US: Plack::Middleware::Session::Simple Perl module
CVE-2026-3545 (Insufficient data validation in Navigation in Google Chrome
prior to 1 ...)
+ {DSA-6157-1}
- chromium 145.0.7632.159-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-3544 (Heap buffer overflow in WebCodecs in Google Chrome prior to
145.0.7632 ...)
+ {DSA-6157-1}
- chromium 145.0.7632.159-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-3543 (Inappropriate implementation in V8 in Google Chrome prior to
145.0.763 ...)
+ {DSA-6157-1}
- chromium 145.0.7632.159-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-3542 (Inappropriate implementation in WebAssembly in Google Chrome
prior to ...)
+ {DSA-6157-1}
- chromium 145.0.7632.159-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-3541 (Inappropriate implementation in CSS in Google Chrome prior to
145.0.76 ...)
+ {DSA-6157-1}
- chromium 145.0.7632.159-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-3540 (Inappropriate implementation in WebAudio in Google Chrome prior
to 145 ...)
+ {DSA-6157-1}
- chromium 145.0.7632.159-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-3539 (Object lifecycle issue in DevTools in Google Chrome prior to
145.0.763 ...)
+ {DSA-6157-1}
- chromium 145.0.7632.159-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-3538 (Integer overflow in Skia in Google Chrome prior to
145.0.7632.159 allo ...)
+ {DSA-6157-1}
- chromium 145.0.7632.159-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-3537 (Object lifecycle issue in PowerVR in Google Chrome on Android
prior to ...)
+ {DSA-6157-1}
- chromium 145.0.7632.159-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-3536 (Integer overflow in ANGLE in Google Chrome prior to
145.0.7632.159 all ...)
+ {DSA-6157-1}
- chromium 145.0.7632.159-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-3520 (Multer is a node.js middleware for handling
`multipart/form-data`. A v ...)
@@ -81938,7 +82286,7 @@ CVE-2025-25692 (A PHAR deserialization vulnerability in
the _getHeaders function
NOT-FOR-US: PrestaShop
CVE-2025-25691 (A PHAR deserialization vulnerability in the component
/themes/import o ...)
NOT-FOR-US: PrestaShop
-CVE-2025-1394 (Failure to handle the error status returned by the buffer
management A ...)
+CVE-2025-1394 (The Ember ZNet stack\u2019s packet buffer manager may read out
of boun ...)
NOT-FOR-US: Silicon Labs
CVE-2025-1221 (A Zigbee Radio Co-Processor (RCP), which is using SiLabs
EmberZNet Zig ...)
NOT-FOR-US: Silicon Labs
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/495e3d3f9d2dea54d2d0bc04b5808e1b256a56dd
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/495e3d3f9d2dea54d2d0bc04b5808e1b256a56dd
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
