[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-11677/libwebsockets
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Oct 24 21:29:15 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8de31560 by Salvatore Bonaccorso at 2025-10-24T22:28:43+02:00
Add Debian bug reference for CVE-2025-11677/libwebsockets
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1881,7 +1881,7 @@ CVE-2025-11678 (Stack-based Buffer Overflowin lws_adns_parse_label in warmcat li
- libwebsockets <unfixed> (bug #1118746)
NOTE: https://libwebsockets.org/git/libwebsockets/commit?id=2bb9598562b37c942ba5b04bcde3f7fdf66a9d3a
CVE-2025-11677 (Use After Free in WebSocket server implementation in lws_handshake_ser ...)
- - libwebsockets <unfixed>
+ - libwebsockets <unfixed> (bug #1118747)
NOTE: https://libwebsockets.org/git/libwebsockets/commit?id=2f082ec31261f556969160143ba94875d783971a
CVE-2025-10678 (NetBird VPN when installed using vendor's provided script failed to re ...)
NOT-FOR-US: NetBird VPN
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8de31560cba649be2669672b6015de7e09e6cd5b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8de31560cba649be2669672b6015de7e09e6cd5b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251024/96974222/attachment.htm>
More information about the debian-security-tracker-commits
mailing list