Update the release status

1 files changed, 5 insertions, 5 deletions

diff --git a/release-status.toml b/release-status.toml
index 8ecd998..225f01d 100644
--- a/release-status.toml
+++ b/release-status.toml
@@ -1,10 +1,10 @@
 [release.sagitta]
-  latest = "1.4.1"
+  latest = "1.4.2"
 
   security_advisory = [
-    {cve="CVE-2023-32728", title="RCE in Zabbix agent", description="Remote code execution in Zabbix agent via SMART plugin.", status="fixed"},
-    {cve="CVE-2024-6387", title="regreSSHion", description="Potential remote code execution in OpenSSH server", status="fixed"},
-    {cve="CVE-2024-53981", title="DoS in python-multipart", description="Remote attacker could potentially cause the HTTP API server to crash", status="fixed"}
+    {cve="CVE-2025-30095", title="Private key reuse in Dropbear SSH server", description="A Dropbear private key was included in the image at build time and not regenerated, making console server SSH connections vulnerable to MitM attacks..", status="fixed"},
+    {cve="CVE-2023-32728", title="Code injection in zabbix_agent2 smartctl plugin", description="Certain configurations of Zabbix agent were vulnerable to remote code execution. This issue was previously fixed by a hotfix and is now included in the image.", status="Fixed"},
+    {cve="CVE-2024-3596", title="Blast-RADIUS", description="The Blast-RADIUS vulnerability is present in 1.4.2 and will be fixed in subsequent releases. Make sure your routers are not communicating with RADIUS servers over untrusted networks.", status="Present"}
   ]
 
   notes = "Maintenance and security release"
@@ -14,5 +14,5 @@
 
   security_advisory = []
 
-  notes = "Bugfix release"
+  notes = "Unsupported — VyOS 1.3 has reached end of life in April 2025."