[Pkg-rust-maintainers] Bug#1128418: rust-rpm-sequoia: CVE-2026-2625
Salvatore Bonaccorso
carnil at debian.org
Sun Apr 26 15:46:48 BST 2026
Source: rust-rpm-sequoia
Source-Version: 1.10.2-1
Hi Holger,
On Thu, Feb 19, 2026 at 07:12:58PM +0100, Salvatore Bonaccorso wrote:
> Hi Holger,
>
> On Thu, Feb 19, 2026 at 03:28:57PM +0000, Holger Levsen wrote:
> > On Thu, Feb 19, 2026 at 03:35:32PM +0100, Salvatore Bonaccorso wrote:
> > > The only available reference at time of writin is [1] the bugzilla
> > > entry at Red Hat. A quick search in [2] has not revealed the issue
> > > beeing reported already, at least I was not able to find it.
> >
> > thanks for this bug report, Salvatore. Upstream learned about this issue
> > by me telling them about this Debian bug of yours.
>
> In this case, thanks for having notified upstream.
This apparently has been fixed upstream via
https://github.com/rpm-software-management/rpm-sequoia/commit/fa3c60094fa853ede6b4862e936f246412d700de
in v1.10.2.
Regards,
Salvatore
More information about the Pkg-rust-maintainers
mailing list