← voltar
CVE-2025-55014

CVE-2025-55014

CVSS 4.7 MEDIUMEPSS 0.4%CWE-402
The YouDao plugin for StarDict, as used in stardict 3.0.7+git20220909+dfsg-6 in Debian trixie and elsewhere, sends an X11 selection to the dict.youdao.com and dict.cn servers via cleartext HTTP.
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N
Produtos afetados
StarDict · StarDict

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1110370https://lists.debian.org/debian-user/2025/08/msg00076.htmlhttps://lwn.net/SubscriberLink/1032732/3334850da49689e1/https://news.ycombinator.com/item?id=44872313https://packages.debian.org/trixie/stardicthttps://packages.debian.org/trixie/stardict-gtkhttps://stardict-4.sourceforge.net/index_en.phphttps://www.openwall.com/lists/oss-security/2025/08/04/1http://www.openwall.com/lists/oss-security/2025/08/08/2