Hi Bastian, On Sun, Aug 10, 2025 at 03:26:17PM +0200, Bastian Germann wrote: > Package: release.debian.org > Severity: normal > Tags: trixie > X-Debbugs-Cc: [email protected] > Control: affects -1 + src:wolfssl > User: [email protected] > Usertags: pu > > [ Reason ] > Fix for CVE-2025-7394. The Security Team does not support wolfssl > officially. > > [ Impact ] > Users are vulnerable for CVE-2025-7394. > > [ Tests ] > None. > > [ Risks ] > Trivial codechange by upstream. > > [ Checklist ] > [x] *all* changes are documented in the d/changelog > [x] I reviewed all changes and I approve them > [x] attach debdiff against the package in (old)stable > [x] the issue is verified as fixed in unstable > > [ Changes ] > Additional random reseed. > > [ Other info ] > I have NMUed the package to fix this.
> diff -Nru wolfssl-5.7.2/debian/changelog wolfssl-5.7.2/debian/changelog > --- wolfssl-5.7.2/debian/changelog 2024-09-23 11:52:19.000000000 +0200 > +++ wolfssl-5.7.2/debian/changelog 2025-08-10 15:17:47.000000000 +0200 > @@ -1,3 +1,9 @@ > +wolfssl (5.7.2-0.1+deb13u1) trixie; urgency=medium > + > + * Fix CVE-2025-7394. > + > + -- Bastian Germann <[email protected]> Sun, 10 Aug 2025 15:17:47 +0200 Can you please add as well a bug closer for #1109549? Regards, Salvatore
