Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 2d30bd06 by Salvatore Bonaccorso at 2025-12-08T22:25:45+01:00 Add CVE-2025-62408/c-ares - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,10 @@ +CVE-2025-62408 [Use after free due to connection being cleaned up after error] + - c-ares 1.34.6-1 + [bookworm] - c-ares <not-affected> (Vulnerable code introduced later) + [bullseye] - c-ares <not-affected> (Vulnerable code introduced later) + NOTE: https://github.com/c-ares/c-ares/security/advisories/GHSA-jq53-42q6-pqr5 + NOTE: Fixed by: https://github.com/c-ares/c-ares/commit/714bf5675c541bd1e668a8db8e67ce012651e618 (main) + NOTE: Fixed by: https://github.com/c-ares/c-ares/commit/abf004903696383bf701b77b87f2a7ed7aaa1276 (v1.34.6) CVE-2025-66461 (FULLBACK Manager Pro provided by GS Yuasa International Ltd. registers ...) NOT-FOR-US: FULLBACK Manager Pro CVE-2025-66334 (Denial of service (DoS) vulnerability in the office service. Impact: S ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2d30bd06ce4e0730b1f9a1be7466448d67cbffc6 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2d30bd06ce4e0730b1f9a1be7466448d67cbffc6 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
