[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for libcoap3 issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Nov 26 07:08:29 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
f8333bb9 by Salvatore Bonaccorso at 2025-11-26T08:07:54+01:00
Add Debian bug reference for libcoap3 issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -259,63 +259,63 @@ CVE-2025-65503 (Use after free in endpoint destructors in Redboltz async_mqtt 10
CVE-2025-65502 (Null pointer dereference in add_ca_certs() in Cesanta Mongoose before ...)
TODO: check
CVE-2025-65501 (Null pointer dereference in coap_dtls_info_callback() in OISM libcoap ...)
- - libcoap3 <unfixed>
+ - libcoap3 <unfixed> (bug #1121415)
[trixie] - libcoap3 <no-dsa> (Minor issue)
[bookworm] - libcoap3 <no-dsa> (Minor issue)
- libcoap2 <removed>
NOTE: https://github.com/obgm/libcoap/issues/1748
NOTE: https://github.com/obgm/libcoap/pull/1750
CVE-2025-65500 (NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_op ...)
- - libcoap3 <unfixed>
+ - libcoap3 <unfixed> (bug #1121415)
[trixie] - libcoap3 <no-dsa> (Minor issue)
[bookworm] - libcoap3 <no-dsa> (Minor issue)
- libcoap2 <removed>
NOTE: https://github.com/obgm/libcoap/issues/1746
NOTE: https://github.com/obgm/libcoap/pull/1750
CVE-2025-65499 (Array index error in tls_verify_call_back() in src/coap_openssl.c in O ...)
- - libcoap3 <unfixed>
+ - libcoap3 <unfixed> (bug #1121415)
[trixie] - libcoap3 <no-dsa> (Minor issue)
[bookworm] - libcoap3 <no-dsa> (Minor issue)
- libcoap2 <removed>
NOTE: https://github.com/obgm/libcoap/issues/1747
NOTE: https://github.com/obgm/libcoap/pull/1750
CVE-2025-65498 (NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_op ...)
- - libcoap3 <unfixed>
+ - libcoap3 <unfixed> (bug #1121415)
[trixie] - libcoap3 <no-dsa> (Minor issue)
[bookworm] - libcoap3 <no-dsa> (Minor issue)
- libcoap2 <removed>
NOTE: https://github.com/obgm/libcoap/issues/1746
NOTE: https://github.com/obgm/libcoap/pull/1750
CVE-2025-65497 (NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_op ...)
- - libcoap3 <unfixed>
+ - libcoap3 <unfixed> (bug #1121415)
[trixie] - libcoap3 <no-dsa> (Minor issue)
[bookworm] - libcoap3 <no-dsa> (Minor issue)
- libcoap2 <removed>
NOTE: https://github.com/obgm/libcoap/issues/1745
NOTE: https://github.com/obgm/libcoap/pull/1750
CVE-2025-65496 (NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_op ...)
- - libcoap3 <unfixed>
+ - libcoap3 <unfixed> (bug #1121415)
[trixie] - libcoap3 <no-dsa> (Minor issue)
[bookworm] - libcoap3 <no-dsa> (Minor issue)
- libcoap2 <removed>
NOTE: https://github.com/obgm/libcoap/issues/1745
NOTE: https://github.com/obgm/libcoap/pull/1750
CVE-2025-65495 (Integer signedness error in tls_verify_call_back() in src/coap_openssl ...)
- - libcoap3 <unfixed>
+ - libcoap3 <unfixed> (bug #1121415)
[trixie] - libcoap3 <no-dsa> (Minor issue)
[bookworm] - libcoap3 <no-dsa> (Minor issue)
- libcoap2 <removed>
NOTE: https://github.com/obgm/libcoap/issues/1744
NOTE: https://github.com/obgm/libcoap/pull/1750
CVE-2025-65494 (NULL pointer dereference in get_san_or_cn_from_cert() in src/coap_open ...)
- - libcoap3 <unfixed>
+ - libcoap3 <unfixed> (bug #1121415)
[trixie] - libcoap3 <no-dsa> (Minor issue)
[bookworm] - libcoap3 <no-dsa> (Minor issue)
- libcoap2 <removed>
NOTE: https://github.com/obgm/libcoap/issues/1745
NOTE: https://github.com/obgm/libcoap/pull/1750
CVE-2025-65493 (NULL pointer dereference in src/coap_openssl.c in OISM libcoap 4.3.5 a ...)
- - libcoap3 <unfixed>
+ - libcoap3 <unfixed> (bug #1121415)
[trixie] - libcoap3 <no-dsa> (Minor issue)
[bookworm] - libcoap3 <no-dsa> (Minor issue)
- libcoap2 <removed>
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f8333bb90a1c940c9feb7605dda299dbd8891dbf
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f8333bb90a1c940c9feb7605dda299dbd8891dbf
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251126/e6900c16/attachment.htm>
More information about the debian-security-tracker-commits
mailing list