[Git][security-tracker-team/security-tracker][master] Add CVE-2025-25188/rust-hickory-proto

Mon Feb 10 20:53:41 GMT 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f03bc733 by Salvatore Bonaccorso at 2025-02-10T21:53:10+01:00
Add CVE-2025-25188/rust-hickory-proto

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,7 +1,9 @@
 CVE-2025-25247 (Improper Neutralization of Input During Web Page Generation ('Cross-si ...)
 	NOT-FOR-US: Apache Felix Webconsole
 CVE-2025-25188 (Hickory DNS is a Rust based DNS client, server, and resolver. A vulner ...)
-	TODO: check
+	- rust-hickory-proto <unfixed>
+	NOTE: https://github.com/hickory-dns/hickory-dns/security/advisories/GHSA-37wc-h8xc-5hc4
+	NOTE: Fixed by: https://github.com/hickory-dns/hickory-dns/commit/e118c6eec569f4340421f86ee0686714010c63e9 (0.24.3)
 CVE-2025-25186 (Net::IMAP implements Internet Message Access Protocol (IMAP) client fu ...)
 	TODO: check
 CVE-2025-24892 (OpenProject is open-source, web-based project management software. In  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f03bc7336b5f4896f58a86f40d72f9b416b4aa49

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f03bc7336b5f4896f58a86f40d72f9b416b4aa49
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250210/0983ec85/attachment.htm>
