[Bug 2130623] Re: Update to address two moderate vulnerabilities
Ubuntu Foundations Team Bug Bot
2130623 at bugs.launchpad.net
Tue Nov 11 04:40:58 UTC 2025
The attachment "lp-2130623-GHSA-c978-wq47-pvvw.patch" seems to be a
patch. If it isn't, please remove the "patch" flag from the attachment,
remove the "patch" tag, and if you are a member of the ~ubuntu-
reviewers, unsubscribe the team.
[This is an automated message performed by a Launchpad user owned by
~brian-murray, for any issues please contact him.]
** Tags added: patch
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to rust-sudo-rs in Ubuntu.
https://bugs.launchpad.net/bugs/2130623
Title:
Update to address two moderate vulnerabilities
Status in rust-sudo-rs package in Ubuntu:
New
Status in rust-sudo-rs source package in Plucky:
New
Status in rust-sudo-rs source package in Questing:
Fix Released
Bug description:
PPA with fix: https://launchpad.net/~bamf0/+archive/ubuntu/rust-sudo-rs-lp2130623/+packages
Repository with fix: https://code.launchpad.net/~bamf0/ubuntu/+source/cve-fixes/+git/cve-fixes/+ref/sudo-rs-sru-lp2130623-questing
---
Upstream will release a fix for two moderate vulnerabilities targeting Friday (Nov 7 2025).
The expected coordinated release of this fix is Monday (Nov 10 2025).
One of these vulnerabilities is CVE-2025-64170.
Course of action:
- The change suggested by upstream is to update the package (SRU)
- There are not any changes in dependencies with respect to version 0.2.8
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/rust-sudo-rs/+bug/2130623/+subscriptions
More information about the foundations-bugs
mailing list