Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3d75910d by Moritz Muehlenhoff at 2025-09-15T18:25:20+02:00
erlang fixed in sid
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -451,7 +451,7 @@ CVE-2025-58065 (Flask-AppBuilder is an application
development framework. Prior
CVE-2025-56556 (An issue was discovered in Subrion CMS 4.2.1, allowing
authenticated a ...)
NOT-FOR-US: Subrion CMS
CVE-2025-48041 (Allocation of Resources Without Limits or Throttling
vulnerability in ...)
- - erlang <unfixed> (bug #1115090)
+ - erlang 1:27.3.4.3+dfsg-1 (bug #1115090)
[trixie] - erlang <no-dsa> (Minor issue)
[bookworm] - erlang <no-dsa> (Minor issue)
NOTE:
https://github.com/erlang/otp/security/advisories/GHSA-79c4-cvv7-4qm3
@@ -459,7 +459,7 @@ CVE-2025-48041 (Allocation of Resources Without Limits or
Throttling vulnerabili
NOTE:
https://github.com/erlang/otp/commit/5f9af63eec4657a37663828d206517828cb9f288
(OTP-27.3.4.3, OTP-28.0.3)
NOTE:
https://github.com/erlang/otp/commit/d49efa2d4fa9e6f7ee658719cd76ffe7a33c2401
(OTP-26.2.5.15)
CVE-2025-48040 (Uncontrolled Resource Consumption vulnerability in Erlang OTP
ssh (ssh ...)
- - erlang <unfixed> (bug #1115091)
+ - erlang 1:27.3.4.3+dfsg-1 (bug #1115091)
[trixie] - erlang <no-dsa> (Minor issue)
[bookworm] - erlang <no-dsa> (Minor issue)
NOTE:
https://github.com/erlang/otp/security/advisories/GHSA-h7rg-6rjg-4cph
@@ -467,7 +467,7 @@ CVE-2025-48040 (Uncontrolled Resource Consumption
vulnerability in Erlang OTP ss
NOTE:
https://github.com/erlang/otp/commit/7cd7abb7e19e16b027eaee6a54e1f6fbbe21181a
(OTP-27.3.4.3, OTP-28.0.3)
NOTE:
https://github.com/erlang/otp/commit/548f1295d86d0803da884db8685cc16d461d0d5a
(OTP-26.2.5.15)
CVE-2025-48039 (Allocation of Resources Without Limits or Throttling
vulnerability in ...)
- - erlang <unfixed> (bug #1115092)
+ - erlang 1:27.3.4.3+dfsg-1 (bug #1115092)
[trixie] - erlang <no-dsa> (Minor issue)
[bookworm] - erlang <no-dsa> (Minor issue)
NOTE:
https://github.com/erlang/otp/security/advisories/GHSA-rr5p-6856-j7h8
@@ -475,7 +475,7 @@ CVE-2025-48039 (Allocation of Resources Without Limits or
Throttling vulnerabili
NOTE:
https://github.com/erlang/otp/commit/c242e6458967e9514bea351814151695807a54ac
(OTP-27.3.4.3, OTP-28.0.3)
NOTE:
https://github.com/erlang/otp/commit/043ee3c943e2977c1acdd740ad13992fd60b6bf0
(OTP-26.2.5.15)
CVE-2025-48038 (Allocation of Resources Without Limits or Throttling
vulnerability in ...)
- - erlang <unfixed> (bug #1115093)
+ - erlang 1:27.3.4.3+dfsg-1 (bug #1115093)
[trixie] - erlang <no-dsa> (Minor issue)
[bookworm] - erlang <no-dsa> (Minor issue)
NOTE:
https://github.com/erlang/otp/security/advisories/GHSA-pvj7-9652-7h9r
@@ -656443,7 +656443,7 @@ CVE-2016-1000110 (The CGIHandler class in Python
before 2.7.12 does not protect
CVE-2016-1000109 (HHVM does not attempt to address RFC 3875 section 4.1.18
namespace con ...)
- hhvm 3.12.11+dfsg-1 (unimportant)
CVE-2016-1000107 (inets in Erlang possibly 22.1 and earlier follows RFC 3875
section 4.1 ...)
- - erlang <unfixed> (unimportant; bug #1115086)
+ - erlang 1:27.3.4.3+dfsg-1 (unimportant; bug #1115086)
NOTE: https://bugs.erlang.org/browse/ERL-198
NOTE:
https://github.com/erlang/otp/security/advisories/GHSA-wrj5-4mmp-gvr8
NOTE: Fixed by (merge):
https://github.com/erlang/otp/commit/13b092a06ab9fad685890d0e963ad8095d0f31ec
(OTP-28.0.4)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3d75910ddb77045026317d6273cef44fa98e9902
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3d75910ddb77045026317d6273cef44fa98e9902
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
