Skip to content

[GHSA-q7c8-gfjh-8v4p] An issue was discovered in Free5gc NRF 1.4.0. In the...#7606

Open
p0sql wants to merge 1 commit intop0sql/advisory-improvement-7606from
p0sql-GHSA-q7c8-gfjh-8v4p
Open

[GHSA-q7c8-gfjh-8v4p] An issue was discovered in Free5gc NRF 1.4.0. In the...#7606
p0sql wants to merge 1 commit intop0sql/advisory-improvement-7606from
p0sql-GHSA-q7c8-gfjh-8v4p

Conversation

@p0sql
Copy link
Copy Markdown

@p0sql p0sql commented May 7, 2026
edited
Loading

Updates

  • Affected products
  • References
  • Summary

Comments
Hello,

I would like to request a review of the GitHub Security Advisory GHSA-q7c8-gfjh-8v4p (CVE-2025-66719).

The advisory currently references issue #736 (opened Nov 17), but the same vulnerability appears to have been originally reported in issue #733 (opened Nov 6).

Could you please review the attribution and consider adding the original report (#733) to the advisory references/credits to ensure the correct disclosure timeline is reflected?

The vulnerability was discovered with py5sig, a tool developed by French National Cybersecurity Agency - ANSSI (https://github.com/ANSSI-FR/py5sig)

Thank you.

@github-actions github-actions Bot changed the base branch from main to p0sql/advisory-improvement-7606 May 7, 2026 00:32
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@p0sql