[Git][security-tracker-team/security-tracker][master] Add CVE-2025-1866/libwebsockets
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Mar 3 21:39:24 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
67333fb4 by Salvatore Bonaccorso at 2025-03-03T22:39:02+01:00
Add CVE-2025-1866/libwebsockets
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -425,7 +425,8 @@ CVE-2025-1868 (Vulnerability of unauthorized exposure of confidential informatio
CVE-2025-1867 (Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response S ...)
NOT-FOR-US: libhv
CVE-2025-1866 (Improper Restriction of Operations within the Bounds of a Memory Buffe ...)
- TODO: check
+ - libwebsockets <not-affected> (Only affects libwebsockets on Windows)
+ NOTE: https://github.com/warmcat/libwebsockets/commit/3f7c79fd57338aca1bf4a1b1f24e324b80d36265
CVE-2025-1864 (Improper Restriction of Operations within the Bounds of a Memory Buffe ...)
TODO: check
CVE-2025-1859 (A vulnerability, which was classified as critical, has been found in P ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/67333fb4b6a78c40eeaedde5d18d3fbdda5128d1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/67333fb4b6a78c40eeaedde5d18d3fbdda5128d1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250303/1195724c/attachment.htm>
More information about the debian-security-tracker-commits
mailing list