[Git][security-tracker-team/security-tracker][master] Add additional references for CVE-2025-58160/rust-tracing-subscriber
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Aug 30 20:07:12 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c060e1cd by Salvatore Bonaccorso at 2025-08-30T21:06:16+02:00
Add additional references for CVE-2025-58160/rust-tracing-subscriber
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -26,6 +26,8 @@ CVE-2025-9499 (The Ocean Extra plugin for WordPress is vulnerable to Stored Cros
CVE-2025-58160 (tracing is a framework for instrumenting Rust programs to collect stru ...)
- rust-tracing-subscriber <unfixed>
NOTE: https://github.com/tokio-rs/tracing/security/advisories/GHSA-xwfj-jgwm-7wp5
+ NOTE: https://github.com/tokio-rs/tracing/pull/3368
+ NOTE: Fixed by: https://github.com/tokio-rs/tracing/commit/4c52ca5266a3920fc5dfeebda2accf15ee7fb278 (tracing-subscriber-0.3.20)
CVE-2025-58159 (WeGIA is a Web manager for charitable institutions. Prior to version 3 ...)
NOT-FOR-US: WeGIA
CVE-2025-58157 (gnark is a zero-knowledge proof system framework. In version 0.12.0, t ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c060e1cd34a7334e720cfe8f38f46e0b44b8bc3b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c060e1cd34a7334e720cfe8f38f46e0b44b8bc3b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250830/5959daa3/attachment.htm>
More information about the debian-security-tracker-commits
mailing list