it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 5992-1] firebird4.0 security update

From: Moritz Muehlenhoff <jmm AT debian.org>
To: debian-security-announce AT lists.debian.org
Subject: [IT-SecNots] [SECURITY] [DSA 5992-1] firebird4.0 security update
Date: Sat, 30 Aug 2025 18:05:12 +0000
Authentication-results: lists.piratenpartei.de; dkim=none; dmarc=none; spf=none (lists.piratenpartei.de: domain of "bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org" has no SPF policy when checking 82.195.75.100) smtp.mailfrom="bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org"
List-archive: https://lists.debian.org/msgid-search/aLM9WOyuWxa4JaxD AT seger.debian.org
List-id: <debian-security-announce.lists.debian.org>
List-url: <http://lists.debian.org/debian-security-announce/>
Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From:Date :Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=vKm50hANMCy2fubnfq9Kwmx1rBJ5mqKv4jyi0Yw3bv8=; b=AS RjLm1K2o7t0f/NlCcK5FpPAIrF6+Twp25SBXMzEsel1ThPklHcxE/Ov0hDMcdUS3Q6PB//0SVsWew eSQDPwAaDmwWO9kbCp9eqWDcNDRxbkHkZzeenbUgPYBU/I8nJ4brh7oWhCZ4XAGwQSG9ZecPXGVP4 F34tbFyApUjqEnL1xSn8f6P+rxCAtEm5XAiTPSSqtnaeuH0tsnsE6wQihWekZvuWf8WrtsGYnjDo2 ISa50UbFJcNztIHFAODDE67ycMUS8j7fphcq0xyRIkTd38EZNgp3ltHAEKCNG2fdOUhOxAUcUMa3q PlMmue/ZEP3hRTUt0j6IEsG1RB2sAlLg==;
Old-return-path: <jmm AT seger.debian.org>
Priority: urgent
Resent-date: Sat, 30 Aug 2025 18:06:00 +0000 (UTC)
Resent-from: debian-security-announce AT lists.debian.org
Resent-message-id: <0g0447UkgLE.A.wFyE.I2zsoB@bendel>
Resent-sender: debian-security-announce-request AT lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5992-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
August 30, 2025 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : firebird4.0
CVE ID : CVE-2025-24975 CVE-2025-54989

Two vulnerabilities were discovered in the Firebird database, which may
result in denial of service or authentication bypass.

For the stable distribution (trixie), these problems have been fixed in
version 4.0.5.3140.ds6-17+deb13u1.

We recommend that you upgrade your firebird4.0 packages.

For the detailed security status of firebird4.0 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/firebird4.0

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=57Qu
-----END PGP SIGNATURE-----

[IT-SecNots] [SECURITY] [DSA 5992-1] firebird4.0 security update, Moritz Muehlenhoff, 30.08.2025

Archiv bereitgestellt durch MHonArc 2.6.19+.