Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
a9ff7e34 by Salvatore Bonaccorso at 2026-07-04T21:04:18+02:00
Track fixed version for sslh issues via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -170492,7 +170492,7 @@ CVE-2025-52937 (Vulnerability in PointCloudLibrary 
PCL (surface/src/3rdparty/ope
        - pcl <not-affected> (PCL in Debian uses the system copy of zlib)
 CVE-2025-52936 (Improper Link Resolution Before File Access ('Link Following') 
vulnera ...)
        {DLA-4238-1}
-       - sslh <unfixed> (bug #1108284)
+       - sslh 2.3.1-1 (bug #1108284)
        [trixie] - sslh <no-dsa> (Minor issue)
        [bookworm] - sslh <no-dsa> (Minor issue)
        NOTE: https://github.com/yrutschle/sslh/pull/494
@@ -177555,7 +177555,7 @@ CVE-2025-47289 (CE Phoenix is a free, open-source 
eCommerce platform. A stored c
 CVE-2025-47272 (The CE Phoenix eCommerce platform, starting in version 1.0.9.7 
and pri ...)
        NOT-FOR-US: CE Phoenix
 CVE-2025-46807 (A Allocation of Resources Without Limits or Throttling 
vulnerability i ...)
-       - sslh <unfixed> (bug #1107213)
+       - sslh 2.3.1-1 (bug #1107213)
        [trixie] - sslh <no-dsa> (Minor issue)
        [bookworm] - sslh <no-dsa> (Minor issue)
        [bullseye] - sslh <ignored> (Minor issue; too intrusive to backport)
@@ -177563,7 +177563,7 @@ CVE-2025-46807 (A Allocation of Resources Without 
Limits or Throttling vulnerabi
        NOTE: Fixed by: 
https://github.com/yrutschle/sslh/commit/ff8206f7c8a47f901b78a1b78db5a4c788f6aa6f
 (v2.2.4)
        NOTE: https://www.openwall.com/lists/oss-security/2025/06/13/1
 CVE-2025-46806 (A Use of Out-of-range Pointer Offset vulnerability in sslh 
leads to de ...)
-       - sslh <unfixed> (bug #1107214)
+       - sslh 2.3.1-1 (bug #1107214)
        [trixie] - sslh <no-dsa> (Minor issue)
        [bookworm] - sslh <not-affected> (Vulnerable code introdued later)
        [bullseye] - sslh <not-affected> (Vulnerable code introdued later)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a9ff7e34cd53b1d50014f1b631d9b8b055432d52

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a9ff7e34cd53b1d50014f1b631d9b8b055432d52
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help


_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to