> On 1 Nov 2025, at 09:21, Olle E. Johansson <[email protected]> wrote:
>
> Hi!
>
> Just discovered this on the OSS-Security mailing list while trying to catch
> up:
>
> "CVEs against dnsmasq (CVE-2025-12198, CVE-2025-12199, CVE-2025-12200)
> and Kamailio (CVE-2025-12204, CVE-2025-12205, CVE-2025-12206, and
> CVE-2025-12207) mentioned in this thread are not yet disputed and have
> no comments of this sort in their descriptions.”
>
> Have we handled these? The first CVE says that vendor was contacted but with
> no response.
It is discussed here:
https://www.openwall.com/lists/oss-security/2025/10/27/8
Obviously this only applies to the configuration parser, not runtime and should
be a disputed CVE.
/O
_______________________________________________
Kamailio - Development Mailing List -- [email protected]
To unsubscribe send an email to [email protected]
Important: keep the mailing list in the recipients, do not reply only to the
sender!
