[Git][security-tracker-team/security-tracker][master] Track fixes via experimental for cpp-httplib issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Aug 17 20:25:59 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4d8801a8 by Salvatore Bonaccorso at 2025-08-17T21:25:27+02:00
Track fixes via experimental for cpp-httplib issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -10238,10 +10238,12 @@ CVE-2025-53630 (llama.cpp is an inference of several LLM models in C/C++. Intege
NOTE: Fixed by: https://github.com/ggml-org/llama.cpp/commit/26a48ad699d50b6268900062661bd22f3e792579 (b5854)
NOTE: llama.cpp builts embedded ggml but does not use it, rather Debian uses standalone src:ggml
CVE-2025-53629 (cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTT ...)
+ [experimental] - cpp-httplib 0.25.0+ds-1
- cpp-httplib <unfixed> (bug #1109340)
NOTE: https://github.com/yhirose/cpp-httplib/security/advisories/GHSA-qjmq-h3cc-qv6w
NOTE: https://github.com/yhirose/cpp-httplib/commit/082acacd4581d10e05fccbe9cb336aa7822c4ea2 (v0.23.0)
CVE-2025-53628 (cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTT ...)
+ [experimental] - cpp-httplib 0.25.0+ds-1
- cpp-httplib <unfixed> (bug #1109340)
NOTE: https://github.com/yhirose/cpp-httplib/security/advisories/GHSA-j6p8-779x-p5pw
NOTE: https://github.com/yhirose/cpp-httplib/commit/17ba303889b8d4d719be3879a70639ab653efb99 (v0.23.0)
@@ -15150,6 +15152,7 @@ CVE-2025-52902 (File Browser provides a file managing interface within a specifi
CVE-2025-52900 (File Browser provides a file managing interface within a specified dir ...)
NOT-FOR-US: filebrowser
CVE-2025-52887 (cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTT ...)
+ [experimental] - cpp-httplib 0.25.0+ds-1
- cpp-httplib <unfixed> (bug #1109340)
NOTE: https://github.com/yhirose/cpp-httplib/security/advisories/GHSA-xjhg-gf59-p92h
NOTE: https://github.com/yhirose/cpp-httplib/commit/28dcf379e82a2cdb544d812696a7fd46067eb7f9 (v0.22.0)
@@ -31273,6 +31276,7 @@ CVE-2025-47297
CVE-2025-47296
REJECTED
CVE-2025-46728 (cpp-httplib is a C++ header-only HTTP/HTTPS server and client library. ...)
+ [experimental] - cpp-httplib 0.20.1+ds-3
- cpp-httplib <unfixed> (bug #1104926)
NOTE: https://github.com/yhirose/cpp-httplib/security/advisories/GHSA-px83-72rx-v57c
NOTE: Fixed by: https://github.com/yhirose/cpp-httplib/commit/7b752106ac42bd5b907793950d9125a0972c8e8e (v0.20.1)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4d8801a819c8dbc835ed7f7d9df9773811232900
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4d8801a819c8dbc835ed7f7d9df9773811232900
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250817/be97abed/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list