[Deepin Integration]~[v25-Release] fix(python-kdcproxy): CVE-2025-59088, CVE-2025-59089 by deepin-ci-robot@deepin-community/python-kdcproxy by deepin-community-ci-bot[bot]

### Package information | 软件包信息

包名 | 版本
--  | --
python-kdcproxy | [1.0.0-1deepin2](https://github.com/deepin-community/python-kdcproxy/commit/7fdc7f10991be6b92df0d2c4c4918242687a6f6c)

### Package repository address | 软件包仓库地址

    deb [trusted=yes] https://ci.deepin.com/repo/obs/deepin:/CI:/TestingIntegration:/test-integration-pr-3945/testing/ ./

### Changelog | 更新信息

#### python-kdcproxy (1.0.0-1deepin2) unstable; urgency=medium

  * Fix CVE-2025-59088: Unauthenticated SSRF via Realm-Controlled DNS.
    Allowing DNS discovery for any requested realm created a SSRF
    vulnerability. This update:     - Makes use_dns apply only to realms
    declared in configuration     - Adds wildcard support for realm
    section names     - Adds dns_realm_discovery parameter for unsafe
    behavior     .     Upstream:
    https://github.com/latchset/kdcproxy/commit/1773f28eeea72ec6efcd433d
    3b66595c44d1253f




Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Deepin Integration]~[v25-Release] fix(python-kdcproxy): CVE-2025-59088, CVE-2025-59089 by deepin-ci-robot@deepin-community/python-kdcproxy by deepin-community-ci-bot[bot] #13186

Package information | 软件包信息

Package repository address | 软件包仓库地址

Changelog | 更新信息

python-kdcproxy (1.0.0-1deepin2) unstable; urgency=medium

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[Deepin Integration]~[v25-Release] fix(python-kdcproxy): CVE-2025-59088, CVE-2025-59089 by deepin-ci-robot@deepin-community/python-kdcproxy by deepin-community-ci-bot[bot] #13186

Description

Package information | 软件包信息

Package repository address | 软件包仓库地址

Changelog | 更新信息

python-kdcproxy (1.0.0-1deepin2) unstable; urgency=medium

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions