[Git][security-tracker-team/security-tracker][master] Add references to upstream fixes for CVE-2025-13086
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Nov 21 07:09:50 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
46e12073 by Salvatore Bonaccorso at 2025-11-21T08:08:49+01:00
Add references to upstream fixes for CVE-2025-13086
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -493,6 +493,8 @@ CVE-2025-13086 [HMAC verification check: fix incorrect memcmp() call]
[experimental] - openvpn 2.7.0~rc2-1
- openvpn 2.7.0~rc2-2 (bug #1121086)
NOTE: https://community.openvpn.net/Security%20Announcements/CVE-2025-13086
+ NOTE: Fixed by: https://github.com/OpenVPN/openvpn/commit/18c483dd6031d86eb393527855734e8cd62fea19 (v2.7_rc2)
+ NOTE: Fixed by: https://github.com/OpenVPN/openvpn/commit/fa6a1824b0f37bff137204156a74ca28cf5b6f83 (v2.6.16)
CVE-2025-64438
- fastdds <unfixed> (bug #1121096)
NOTE: Fixed by: https://github.com/eProsima/Fast-DDS/commit/0b0cb308eaeeb2175694aa0a0a723106824ce9a7 (v3.4.1)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/46e12073fcc40d721869cc9d5e2a9ed662d8f4a9
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/46e12073fcc40d721869cc9d5e2a9ed662d8f4a9
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251121/8163aacb/attachment.htm>
More information about the debian-security-tracker-commits
mailing list