[Git][security-tracker-team/security-tracker][master] Add CVE-2025-40290
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Dec 8 04:46:11 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
30f4ce9a by Salvatore Bonaccorso at 2025-12-08T05:45:40+01:00
Add CVE-2025-40290
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,9 @@
+CVE-2025-40290 [xsk: avoid data corruption on cq descriptor number]
+ - linux 6.17.11-1 (bug #1118437)
+ [trixie] - linux <not-affected> (Vulnerable code not present)
+ [bookworm] - linux <not-affected> (Vulnerable code not present)
+ [bullseye] - linux <not-affected> (Vulnerable code not present)
+ NOTE: https://git.kernel.org/linus/0ebc27a4c67d44e5ce88d21cdad8201862b78837 (6.18)
CVE-2025-XXXX [RUSTSEC-2025-0132]
- rust-maxminddb <unfixed>
[trixie] - rust-maxminddb <no-dsa> (Minor issue)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/30f4ce9a20d9ab99c187f9e69cad0ddc1dec7134
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/30f4ce9a20d9ab99c187f9e69cad0ddc1dec7134
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251208/1ec01f7a/attachment.htm>
More information about the debian-security-tracker-commits
mailing list