[Git][security-tracker-team/security-tracker][master] new libwebsockets issue

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
910b6d9c by Moritz Muehlenhoff at 2025-10-22T00:32:39+02:00
new libwebsockets issue

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -460,7 +460,8 @@ CVE-2025-11678 (Stack-based Buffer Overflowin lws_adns_parse_label in warmcat li
 	- libwebsockets <unfixed>
 	NOTE: https://libwebsockets.org/git/libwebsockets/commit?id=2bb9598562b37c942ba5b04bcde3f7fdf66a9d3a
 CVE-2025-11677 (Use After Free in WebSocket server implementation in lws_handshake_ser ...)
-	TODO: check
+	- libwebsockets <unfixed>
+	NOTE: https://libwebsockets.org/git/libwebsockets/commit?id=2f082ec31261f556969160143ba94875d783971a
 CVE-2025-10678 (NetBird VPN when installed using vendor's provided script failed to re ...)
 	NOT-FOR-US: NetBird VPN
 CVE-2024-55568 (An issue was discovered in Samsung Mobile Processor, Wearable Processo ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/910b6d9cfc942275ff5ec5ef9fb893a737c47d36

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/910b6d9cfc942275ff5ec5ef9fb893a737c47d36
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251021/39b5ff79/attachment.htm>