[Git][security-tracker-team/security-tracker][master] 2 commits: Mark CVE-2025-30187 as no-dsa for trixie

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Oct 22 07:09:19 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9721670c by Salvatore Bonaccorso at 2025-10-22T08:06:50+02:00
Mark CVE-2025-30187 as no-dsa for trixie

- - - - -
6206935f by Salvatore Bonaccorso at 2025-10-22T08:07:18+02:00
Track proposed dnsdist update via trixie-pu

- - - - -


2 changed files:

- data/CVE/list
- data/next-point-update.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -11897,6 +11897,7 @@ CVE-2022-50375 (In the Linux kernel, the following vulnerability has been resolv
 	NOTE: https://git.kernel.org/linus/316ae95c175a7d770d1bfe4c011192712f57aa4a (6.1-rc1)
 CVE-2025-30187 (In some circumstances, when DNSdist is configured to use the nghttp2 l ...)
 	- dnsdist 2.0.1-1 (bug #1115643)
+	[trixie] - dnsdist <no-dsa> (Minor issue)
 	[bookworm] - dnsdist <not-affected> (Vulnerable code not present)
 	[bullseye] - dnsdist <not-affected> (Vulnerable code not present)
 	NOTE: https://www.openwall.com/lists/oss-security/2025/09/18/1


=====================================
data/next-point-update.txt
=====================================
@@ -59,3 +59,5 @@ CVE-2025-XXXX [session id exposed in portal AJAX responses]
 	[trixie] - lemonldap-ng 2.21.2+ds-1+deb13u1
 CVE-2025-62171
 	[trixie] - imagemagick 8:7.1.1.43+dfsg1-1+deb13u3
+CVE-2025-30187
+	[trixie] - dnsdist 1.9.10-1+deb13u1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/a2924f094ab792993ab6486c1d8e8a89c55bb10b...6206935f738e41266b448a72ae6b0871ac13b11c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/a2924f094ab792993ab6486c1d8e8a89c55bb10b...6206935f738e41266b448a72ae6b0871ac13b11c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251022/b0fa619b/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list