Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8ebaad43 by Salvatore Bonaccorso at 2026-01-21T21:51:26+01:00
Add upstream commit references for bind9 issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -67,6 +67,9 @@ CVE-2025-57681 (The WorklogPRO - Timesheets for Jira plugin
in Jira Data Center
CVE-2025-13878 (Malformed BRID/HHIT records can cause `named` to terminate
unexpectedl ...)
- bind9 <unfixed>
NOTE: https://kb.isc.org/docs/cve-2025-13878
+ NOTE: Fixed by:
https://gitlab.isc.org/isc-projects/bind9/-/commit/d556bde1231edf81427d577e35f48f764b6a37b8
(v9.18.44)
+ NOTE: Fixed by:
https://gitlab.isc.org/isc-projects/bind9/-/commit/d4c0d617015625330f08a3f86a10a533cec0f6ec
(v9.20.18)
+ NOTE: Fixed by:
https://gitlab.isc.org/isc-projects/bind9/-/commit/7bf83f69a80bdc6094c2adee3595e28b1b3e19ea
(v9.21.17)
CVE-2025-13465 (Lodash versions 4.0.0 through 4.17.22 are vulnerable to
prototype poll ...)
TODO: check
CVE-2025-12781 (When passing data to the b64decode(), standard_b64decode(),
and urlsaf ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8ebaad437252f6f331155d1c1cbdaa4210a3ffc8
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8ebaad437252f6f331155d1c1cbdaa4210a3ffc8
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
