From: Thomas Markwalder <tmark@isc.org>
Date: Mon, 6 Oct 2025 13:54:45 +0000 (-0400)
Subject: [#4142] Added Changelog entry
X-Git-Tag: Kea-3.1.3~11
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=18321a6cb5f4f8e83766b30c3178a4e08bd355d4;p=thirdparty%2Fkea.git

[#4142] Added Changelog entry

new file: changelog_unreleased/CVE-2025-11232-catch-empty-sanitized-hostname
---

diff --git a/changelog_unreleased/CVE-2025-11232-catch-empty-sanitized-hostname b/changelog_unreleased/CVE-2025-11232-catch-empty-sanitized-hostname
new file mode 100644
index 0000000000..1af77ebc16
--- /dev/null
+++ b/changelog_unreleased/CVE-2025-11232-catch-empty-sanitized-hostname
@@ -0,0 +1,6 @@
+[sec]		tmark
+	When a hostname or FQDN received from a client is
+	reduced to an empty string by hostname sanitiziing,
+	kea-dhcp4 and kea-dhcp6 will now drop the option.
+    CVE:2025-11232
+	(Gitlab #4142)