[Git][security-tracker-team/security-tracker][master] 2 commits: Mark CVE-2025-7394/wolfssl as no-dsa

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Aug 11 08:42:46 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
abe82433 by Salvatore Bonaccorso at 2025-08-11T09:41:06+02:00
Mark CVE-2025-7394/wolfssl as no-dsa

- - - - -
33051f1f by Salvatore Bonaccorso at 2025-08-11T09:42:11+02:00
Track proposed wolfssl update via trxie-pu

- - - - -


2 changed files:

- data/CVE/list
- data/next-point-update.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -5471,6 +5471,8 @@ CVE-2025-7395 (A certificate verification error in wolfSSL when building with th
 CVE-2025-7394 (In the OpenSSL compatibility layer implementation, the function RAND_p ...)
 	[experimental] - wolfssl 5.7.2-0.3
 	- wolfssl 5.7.2-0.4 (bug #1109549)
+	[trixie] - wolfssl <no-dsa> (Minor issue; can be fixed via point release)
+	[bookworm] - wolfssl <no-dsa> (Minor issue; can be fixed via point release)
 	NOTE: https://github.com/wolfSSL/wolfssl/pull/8849
 	NOTE: Fixed by: https://github.com/wolfSSL/wolfssl/commit/0c12337194ee6dd082f082f0ccaed27fc4ee44f5 (v5.8.2-stable)
 	NOTE: https://github.com/wolfSSL/wolfssl/pull/8867


=====================================
data/next-point-update.txt
=====================================
@@ -10,3 +10,5 @@ CVE-2025-43965
 	[trixie] - imagemagick 8:7.1.1.43+dfsg1-1+deb13u1
 CVE-2025-46393
 	[trixie] - imagemagick 8:7.1.1.43+dfsg1-1+deb13u1
+CVE-2025-7394
+	[trixie] - wolfssl 5.7.2-0.1+deb13u1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/3f5f2729f90ece41fa4de8c90005c1d69f69c4dd...33051f1f86fddf3d30734a3b213441d58709ba91

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/3f5f2729f90ece41fa4de8c90005c1d69f69c4dd...33051f1f86fddf3d30734a3b213441d58709ba91
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250811/5540be0c/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list