[Git][security-tracker-team/security-tracker][master] 2 commits: Mark CVE-2025-7394/wolfssl as no-dsa

Mon, 11 Aug 2025 01:01:19 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
abe82433 by Salvatore Bonaccorso at 2025-08-11T09:41:06+02:00
Mark CVE-2025-7394/wolfssl as no-dsa

- - - - -
33051f1f by Salvatore Bonaccorso at 2025-08-11T09:42:11+02:00
Track proposed wolfssl update via trxie-pu

- - - - -


2 changed files:

- data/CVE/list
- data/next-point-update.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -5471,6 +5471,8 @@ CVE-2025-7395 (A certificate verification error in 
wolfSSL when building with th
 CVE-2025-7394 (In the OpenSSL compatibility layer implementation, the function 
RAND_p ...)
        [experimental] - wolfssl 5.7.2-0.3
        - wolfssl 5.7.2-0.4 (bug #1109549)
+       [trixie] - wolfssl <no-dsa> (Minor issue; can be fixed via point 
release)
+       [bookworm] - wolfssl <no-dsa> (Minor issue; can be fixed via point 
release)
        NOTE: https://github.com/wolfSSL/wolfssl/pull/8849
        NOTE: Fixed by: 
https://github.com/wolfSSL/wolfssl/commit/0c12337194ee6dd082f082f0ccaed27fc4ee44f5
 (v5.8.2-stable)
        NOTE: https://github.com/wolfSSL/wolfssl/pull/8867


=====================================
data/next-point-update.txt
=====================================
@@ -10,3 +10,5 @@ CVE-2025-43965
        [trixie] - imagemagick 8:7.1.1.43+dfsg1-1+deb13u1
 CVE-2025-46393
        [trixie] - imagemagick 8:7.1.1.43+dfsg1-1+deb13u1
+CVE-2025-7394
+       [trixie] - wolfssl 5.7.2-0.1+deb13u1



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/3f5f2729f90ece41fa4de8c90005c1d69f69c4dd...33051f1f86fddf3d30734a3b213441d58709ba91

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/3f5f2729f90ece41fa4de8c90005c1d69f69c4dd...33051f1f86fddf3d30734a3b213441d58709ba91
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to