zara
/
zephyr
mirror of https://github.com/zephyrproject-rtos/zephyr
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

doc: security: Disclose CVE-2025-2962 

Disclose information about published CVE.

Signed-off-by: Flavio Ceolin <flavio@hubblenetwork.com>
pull/92271/head
Flavio Ceolin 2 weeks ago committed by Dan Kalowsky
parent
de10d08894
commit
44c76ee4ef
1 changed files with 18 additions and 1 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 19
      doc/security/vulnerabilities.rst

19
doc/security/vulnerabilities.rst
Unescape View File

@ -1908,4 +1908,21 @@ This has been fixed in main for v4.1.0 @@ -1908,4 +1908,21 @@ This has been fixed in main for v4.1.0
:cve:`2025-2962`
----------------
Under embargo until 2025-06-07
Infinite loop in dns_copy_qname
A denial-of-service issue in the dns implementation could cause an
infinite loop.
- `Zephyr project bug tracker GHSA-2qp5-c2vq-g2ww
<https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-2qp5-c2vq-g2ww>`_
This has been fixed in main for v4.2.0
- `PR 87753 fix for main
<https://github.com/zephyrproject-rtos/zephyr/pull/87753>`_
- `PR 87925 fix for 4.1
<https://github.com/zephyrproject-rtos/zephyr/pull/87925>`_
- `PR 87949 fix for 3.7
<https://github.com/zephyrproject-rtos/zephyr/pull/87949>`_

Write Preview
Loading…
Cancel
Save