[Git][security-tracker-team/security-tracker][master] CVE-2026-42254 assigned for rust-hickory-recursor issue
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Apr 26 08:26:00 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0035a905 by Salvatore Bonaccorso at 2026-04-26T09:25:31+02:00
CVE-2026-42254 assigned for rust-hickory-recursor issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -44,8 +44,6 @@ CVE-2026-6994 (A weakness has been identified in Envoy up to 1.33.0. Affected is
- envoyproxy <itp> (bug #987544)
CVE-2026-42255 (Technitium DNS Server before 15.0 allows DNS traffic amplification via ...)
TODO: check
-CVE-2026-42254 (Hickory DNS hickory-recursor 0.1 through 0.25.2 allows cross-zone pois ...)
- TODO: check
CVE-2026-6993 (A security flaw has been discovered in go-kratos kratos up to 2.9.2. T ...)
TODO: check
CVE-2026-6992 (A vulnerability was identified in Linksys MR9600 2.0.6.206937. This af ...)
@@ -186,7 +184,7 @@ CVE-2026-XXXX [RUSTSEC-2026-0104]
- rust-rustls-webpki 0.103.13+ds-1
NOTE: https://rustsec.org/advisories/RUSTSEC-2026-0104.html
NOTE: https://github.com/advisories/GHSA-82j2-j2ch-gfr8
-CVE-2026-XXXX [RUSTSEC-2026-0106]
+CVE-2026-42254 [RUSTSEC-2026-0106]
- rust-hickory-recursor <unfixed>
NOTE: https://rustsec.org/advisories/RUSTSEC-2026-0106.html
NOTE: https://github.com/hickory-dns/hickory-dns/security/advisories/GHSA-83hf-93m4-rgwq
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0035a9058c5e90f35f10d40264b5422269ce6796
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0035a9058c5e90f35f10d40264b5422269ce6796
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260426/f31fd288/attachment.htm>
More information about the debian-security-tracker-commits
mailing list