proj: c-ares
subj: [vs-plain] c-ares security vuln
trep: Mon Apr 07 12:22:00 2025
cves: CVE-2025-31498
tcrd: 4/8/2025
toss: Tue Apr 08 13:00:39 2025
soss: [oss-security] CVE-2025-31498: c-ares use-after-free
loss: https://www.openwall.com/lists/oss-security/2025/04/08/3

proj: Perl
subj: [vs-plain] Impending Perl vuln disclosure (CVE-2024-56406)
trep: Tue Apr 08 03:25:01 2025
cves: CVE-2024-56406
tcrd: Sunday, April 13 2025, around 13:00 UTC
toss: Sun Apr 13 14:21:46 2025
soss: [oss-security] CVE-2024-56406: Perl 5.34, 5.36, 5.38 and 5.40 are vulnerable to a heap buffer overflow when transliterating non-ASCII bytes
loss: https://www.openwall.com/lists/oss-security/2025/04/13/3