[Git][security-tracker-team/security-tracker][master] Add CVE-2025-58160/rust-tracing-subscriber
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Aug 30 09:28:03 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b3786579 by Salvatore Bonaccorso at 2025-08-30T10:27:37+02:00
Add CVE-2025-58160/rust-tracing-subscriber
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -19,7 +19,8 @@ CVE-2025-9500 (The TablePress plugin for WordPress is vulnerable to Stored Cross
CVE-2025-9499 (The Ocean Extra plugin for WordPress is vulnerable to Stored Cross-Sit ...)
NOT-FOR-US: WordPress plugin
CVE-2025-58160 (tracing is a framework for instrumenting Rust programs to collect stru ...)
- TODO: check
+ - rust-tracing-subscriber <unfixed>
+ NOTE: https://github.com/tokio-rs/tracing/security/advisories/GHSA-xwfj-jgwm-7wp5
CVE-2025-58159 (WeGIA is a Web manager for charitable institutions. Prior to version 3 ...)
NOT-FOR-US: WeGIA
CVE-2025-58157 (gnark is a zero-knowledge proof system framework. In version 0.12.0, t ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b3786579c31a611f7158f8dbec1fe58272c7aa1b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b3786579c31a611f7158f8dbec1fe58272c7aa1b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250830/92a27c7a/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list