Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5f87abde by Salvatore Bonaccorso at 2026-01-15T20:34:47+01:00
Update status for CVE-2025-14242/vsftpd
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -230,9 +230,9 @@ CVE-2025-14556 (Improper Neutralization of Input During Web
Page Generation (XSS
CVE-2025-14317 (In Crazy Bubble Tea mobile application authenticated attacker
canobtai ...)
NOT-FOR-US: Crazy Bubble Tea mobile application
CVE-2025-14242 (A flaw was found in vsftpd. This vulnerability allows a denial
of serv ...)
- - vsftpd <undetermined>
+ - vsftpd <not-affected> (Vulnerable code introduced in RedHat specific
patch)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2419826
- TODO: check, no actionable information ind RedHat bugzilla
+ NOTE: RedHat specific patch fix:
https://src.fedoraproject.org/rpms/vsftpd/c/2ed5ba6e77f1c3e365fb4b0028945f762c456131
CVE-2025-13175 (Y Soft SafeQ 6 renders the Workflow Connector password field
in a way ...)
NOT-FOR-US: Y Soft
CVE-2025-0647 (In certain Arm CPUs, a CPP RCTX instruction executed on one
Processing ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5f87abde9bcdd21412187132da4118a703369488
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5f87abde9bcdd21412187132da4118a703369488
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
