OTP-25.3.2.19

2 files changed, 137 insertions, 2 deletions

diff --git a/early-plugins.mk b/early-plugins.mk
index 0b77cd1..1981408 100644
--- a/early-plugins.mk
+++ b/early-plugins.mk
@@ -19,7 +19,7 @@ OTP-21 := OTP-21.0.9 OTP-21.1.4 OTP-21.2.7 OTP-21.3.8.24
 OTP-22 := OTP-22.0.7 OTP-22.1.8 OTP-22.2.8 OTP-22.3.4.27
 OTP-23 := OTP-23.0.4 OTP-23.1.5 OTP-23.2.7.3 OTP-23.3.4.20
 OTP-24 := OTP-24.0.6 OTP-24.1.7 OTP-24.2.2 OTP-24.3.4.17
-OTP-25 := OTP-25.0.4 OTP-25.1.2.1 OTP-25.2.3 OTP-25.3.2.18
+OTP-25 := OTP-25.0.4 OTP-25.1.2.1 OTP-25.2.3 OTP-25.3.2.19
 OTP-26 := OTP-26.0.2 OTP-26.1.2 OTP-26.2.5.10
 OTP-27 := OTP-27.0.1 OTP-27.1.3 OTP-27.2.4 OTP-27.3.1
 OTP-28 := OTP-28.0-rc2
@@ -123,7 +123,7 @@ OTP-24-DROPPED := OTP-24.0-rc2 OTP-24.0-rc3 OTP-24.0 OTP-24.0.1 OTP-24.0.5 \
 OTP-25-DROPPED := OTP-25.0-rc1 OTP-25.0-rc2 OTP-25.0-rc3 OTP-25.0 \
 	OTP-25.0.1 OTP-25.0.2 OTP-25.0.3 OTP-25.1 OTP-25.1.1 OTP-25.1.2 OTP-25.2 \
 	OTP-25.2.1 OTP-25.2.2 OTP-25.3 OTP-25.3.1 OTP-25.3.2 OTP-25.3.2.1 OTP-25.3.2.2 \
-	OTP-25.3.2.3 OTP-25.3.2.4 OTP-25.3.2.5 OTP-25.3.2.6 OTP-25.3.2.7 OTP-25.3.2.8 OTP-25.3.2.9 OTP-25.3.2.10 OTP-25.3.2.11 OTP-25.3.2.12 OTP-25.3.2.13 OTP-25.3.2.14 OTP-25.3.2.15 OTP-25.3.2.16 OTP-25.3.2.17
+	OTP-25.3.2.3 OTP-25.3.2.4 OTP-25.3.2.5 OTP-25.3.2.6 OTP-25.3.2.7 OTP-25.3.2.8 OTP-25.3.2.9 OTP-25.3.2.10 OTP-25.3.2.11 OTP-25.3.2.12 OTP-25.3.2.13 OTP-25.3.2.14 OTP-25.3.2.15 OTP-25.3.2.16 OTP-25.3.2.17 OTP-25.3.2.18
 OTP-26-DROPPED := OTP-26.0-rc3 \
 	OTP-26.0 OTP-26.0.1 OTP-26.1 OTP-26.1.1 OTP-26.2 OTP-26.2.1 OTP-26.2.2 OTP-26.2.3 OTP-26.2.4 OTP-26.2.5 OTP-26.2.5.1 OTP-26.2.5.2 OTP-26.2.5.3 OTP-26.2.5.4 OTP-26.2.5.5 OTP-26.2.5.6 OTP-26.2.5.7 OTP-26.2.5.8 OTP-26.2.5.9
 OTP-27-DROPPED := OTP-27.0-rc1 OTP-27.0-rc2 \
diff --git a/release-notes/OTP-25.3.2.19.README.txt b/release-notes/OTP-25.3.2.19.README.txt
new file mode 100644
index 0000000..315b209
--- /dev/null
+++ b/release-notes/OTP-25.3.2.19.README.txt
@@ -0,0 +1,135 @@
+Patch Package:           OTP 25.3.2.19
+Git Tag:                 OTP-25.3.2.19
+Date:                    2025-03-28
+Trouble Report Id:       OTP-19501, OTP-19527, OTP-19543, OTP-19545,
+                         OTP-19559
+Seq num:                 CVE-2025-30211, ERIERL-1195, GH-9554,
+                         OTP-19544, PR-9499, PR-9545, PR-9577, PR-9587
+System:                  OTP
+Release:                 25
+Application:             erts-13.2.2.15, kernel-8.5.4.5,
+                         mnesia-4.21.4.4, ssh-4.15.3.11
+Predecessor:             OTP 25.3.2.18
+
+ Check out the git tag OTP-25.3.2.19, and build a full OTP system
+ including documentation. Apply one or more applications from this
+ build as patches to your installation using the 'otp_patch_apply'
+ tool. For information on install requirements, see descriptions for
+ each application version below.
+
+ ---------------------------------------------------------------------
+ --- erts-13.2.2.15 --------------------------------------------------
+ ---------------------------------------------------------------------
+
+ Note! The erts-13.2.2.15 application *cannot* be applied
+       independently of other applications on an arbitrary OTP 25
+       installation.
+
+       On a full OTP 25 installation, also the following runtime
+       dependencies have to be satisfied:
+       -- kernel-8.5 (first satisfied in OTP 25.1)
+       -- stdlib-4.1 (first satisfied in OTP 25.1)
+
+
+ --- Fixed Bugs and Malfunctions ---
+
+  OTP-19527    Application(s): erts
+               Related Id(s): PR-9577
+
+               Trace messages due to receive tracing could potentially
+               be delayed a very long time if the traced process
+               waited in a receive expression without clauses matching
+               on messages (timed wait), or just did not enter a
+               receive expression for a very long time.
+
+
+ Full runtime dependencies of erts-13.2.2.15: kernel-8.5, sasl-3.3,
+ stdlib-4.1
+
+
+ ---------------------------------------------------------------------
+ --- kernel-8.5.4.5 --------------------------------------------------
+ ---------------------------------------------------------------------
+
+ Note! The kernel-8.5.4.5 application *cannot* be applied
+       independently of other applications on an arbitrary OTP 25
+       installation.
+
+       On a full OTP 25 installation, also the following runtime
+       dependencies have to be satisfied:
+       -- erts-13.1.3 (first satisfied in OTP 25.2)
+       -- stdlib-4.1.1 (first satisfied in OTP 25.1.1)
+
+
+ --- Fixed Bugs and Malfunctions ---
+
+  OTP-19545    Application(s): kernel
+               Related Id(s): PR-9587, OTP-19544
+
+               An infinite loop in CNAME loop detection that can cause
+               Out Of Memory has been fixed. This affected CNAME
+               lookup with the internal DNS resolver.
+
+
+ Full runtime dependencies of kernel-8.5.4.5: crypto-5.0, erts-13.1.3,
+ sasl-3.0, stdlib-4.1.1
+
+
+ ---------------------------------------------------------------------
+ --- mnesia-4.21.4.4 -------------------------------------------------
+ ---------------------------------------------------------------------
+
+ The mnesia-4.21.4.4 application can be applied independently of other
+ applications on a full OTP 25 installation.
+
+ --- Fixed Bugs and Malfunctions ---
+
+  OTP-19501    Application(s): mnesia
+               Related Id(s): ERIERL-1195, PR-9499
+
+               Mnesia could fail to load a table, if one of the copy
+               holders was moved during startup.
+
+
+ Full runtime dependencies of mnesia-4.21.4.4: erts-9.0, kernel-5.3,
+ stdlib-3.4
+
+
+ ---------------------------------------------------------------------
+ --- ssh-4.15.3.11 ---------------------------------------------------
+ ---------------------------------------------------------------------
+
+ The ssh-4.15.3.11 application can be applied independently of other
+ applications on a full OTP 25 installation.
+
+ --- Fixed Bugs and Malfunctions ---
+
+  OTP-19543    Application(s): ssh
+               Related Id(s): CVE-2025-30211
+
+               Reception of malicious KEX init message does not result
+               with ssh daemon excessive memory usage.
+
+
+  OTP-19559    Application(s): ssh
+               Related Id(s): GH-9554, PR-9545
+
+               Call to ssh:daemon_replace_options does not crash when
+               argument is not a valid daemon ref.
+
+
+ Full runtime dependencies of ssh-4.15.3.11: crypto-5.0, erts-11.0,
+ kernel-6.0, public_key-1.6.1, runtime_tools-1.15.1, stdlib-3.15
+
+
+ ---------------------------------------------------------------------
+ --- Thanks to -------------------------------------------------------
+ ---------------------------------------------------------------------
+
+ Alexandre Rodrigues, Sergei Shuvatov
+
+
+ ---------------------------------------------------------------------
+ ---------------------------------------------------------------------
+ ---------------------------------------------------------------------
+