On 2025-05-28 23.34, Salvatore Bonaccorso wrote: > The following vulnerabilities were published for isc-kea. > [...] > > While at least CVE-2025-32801 is a nonissue in Debian context as the > daemon does not as root, cf. the detailed writeup at [3], it might be > still a good idea to have isc-kea patched/rebased to 2.6.2 for Debian > trixie.
This is on my radar, I tried importing version 2.6.3 but unfortunately we need to adapt a quilt patch in a non-trivial way. Should be doable. -- Paride
