[Git][security-tracker-team/security-tracker][master] CVE-2025-27551,CVE-2025-27552/libdbix-class-encodedcolumn-perl: bullseye postponed

Sylvain Beucler (@beuc) gitlab at salsa.debian.org
Thu Apr 10 14:20:21 BST 2025 


Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8c573371 by Sylvain Beucler at 2025-04-10T15:19:56+02:00
CVE-2025-27551,CVE-2025-27552/libdbix-class-encodedcolumn-perl: bullseye postponed

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -6647,10 +6647,12 @@ CVE-2022-XXXX [RUSTSEC-2022-0094]
 CVE-2025-27551 (DBIx::Class::EncodedColumn use the rand() function, which is not crypt ...)
 	- libdbix-class-encodedcolumn-perl 0.00020-3
 	[bookworm] - libdbix-class-encodedcolumn-perl <ignored> (Minor issue, too intrusive to backport)
+	[bullseye] - libdbix-class-encodedcolumn-perl <postponed> (Minor issue, leaf package, fix requires libcrypt-urandom-token-perl or a replacement)
 	NOTE: https://github.com/wreis/DBIx-Class-EncodedColumn/commit/5e9e51f574f7e64e8c014e9e4f00ee8fd87a5335 (0.11)
 CVE-2025-27552 (DBIx::Class::EncodedColumn use the rand() function, which is not crypt ...)
 	- libdbix-class-encodedcolumn-perl 0.00020-3
 	[bookworm] - libdbix-class-encodedcolumn-perl <ignored> (Minor issue, too intrusive to backport)
+	[bullseye] - libdbix-class-encodedcolumn-perl <postponed> (Minor issue, leaf package, fix requires libcrypt-urandom-token-perl or a replacement)
 	NOTE: https://github.com/wreis/DBIx-Class-EncodedColumn/commit/5e9e51f574f7e64e8c014e9e4f00ee8fd87a5335 (0.11)
 CVE-2025-30742 (httpd.c in atophttpd 2.8.0 has an off-by-one error and resultant out-o ...)
 	NOT-FOR-US: atophttpd



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8c573371e517a5a9c5d76dfc6f77d02cf3685c8c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8c573371e517a5a9c5d76dfc6f77d02cf3685c8c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250410/ff4072f1/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list