[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2025-11230/haprroxy via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Oct 3 13:05:01 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
fdcf613e by Salvatore Bonaccorso at 2025-10-03T14:04:22+02:00
Track fixed version for CVE-2025-11230/haprroxy via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
CVE-2025-11230 [BUG/CRITICAL: mjson: fix possible DoS when parsing numbers]
- - haproxy <unfixed>
+ - haproxy 3.2.5-2
[bullseye] - haproxy <not-affected> (Vulnerable code introduced later)
NOTE: Introduced with: https://github.com/haproxy/haproxy/commit/41007a6835fe29f865e01d8fbeb96114c0d01828 (v2.4-dev17)
NOTE: Fixed by: https://git.haproxy.org/?p=haproxy-3.2.git;a=commit;h=6fd1287526eae1b31329997a2df29c9fb564a8e8 (v3.2.6)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fdcf613ebf0d0e955c9a66015edf860020ab31ff
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fdcf613ebf0d0e955c9a66015edf860020ab31ff
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251003/29b3c5cb/attachment.htm>
More information about the debian-security-tracker-commits
mailing list