CNNVD-202508-027 Information

CNNVD ID

CNNVD-202508-027

Related CVE

CVE-2025-8454

• CNNVD Published: 2025-08-01

Description (Chinese)

Debian devscripts是Debian社区的一个包含了一系列用于系统维护和脚本的软件包。 Debian devscripts存在安全漏洞，该漏洞源于uscan工具在验证上游源时跳过OpenPGP验证。

Description (English)

Debian devscripts are a series of software packages in the Debian community for system maintenance and scripts. There is a security loophole in Debian devscripts, which stems from the fact that the uscan tool skips the OpenPGP to verify upstream sources.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Debian

Published

2025-08-01

Last Modified

2026-02-24

References

https://bugs.debian.org/1109251 https://access.redhat.com/security/cve/cve-2025-8454

Patch

https://salsa.debian.org/debian/devscripts/-/tags