[Git][security-tracker-team/security-tracker][master] Track fixes via experimental for cpp-httplib issues

Sun, 17 Aug 2025 12:26:06 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
4d8801a8 by Salvatore Bonaccorso at 2025-08-17T21:25:27+02:00
Track fixes via experimental for cpp-httplib issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -10238,10 +10238,12 @@ CVE-2025-53630 (llama.cpp is an inference of several 
LLM models in C/C++. Intege
        NOTE: Fixed by: 
https://github.com/ggml-org/llama.cpp/commit/26a48ad699d50b6268900062661bd22f3e792579
 (b5854)
        NOTE: llama.cpp builts embedded ggml but does not use it, rather Debian 
uses standalone src:ggml
 CVE-2025-53629 (cpp-httplib is a C++11 single-file header-only cross platform 
HTTP/HTT ...)
+       [experimental] - cpp-httplib 0.25.0+ds-1
        - cpp-httplib <unfixed> (bug #1109340)
        NOTE: 
https://github.com/yhirose/cpp-httplib/security/advisories/GHSA-qjmq-h3cc-qv6w
        NOTE: 
https://github.com/yhirose/cpp-httplib/commit/082acacd4581d10e05fccbe9cb336aa7822c4ea2
 (v0.23.0)
 CVE-2025-53628 (cpp-httplib is a C++11 single-file header-only cross platform 
HTTP/HTT ...)
+       [experimental] - cpp-httplib 0.25.0+ds-1
        - cpp-httplib <unfixed> (bug #1109340)
        NOTE: 
https://github.com/yhirose/cpp-httplib/security/advisories/GHSA-j6p8-779x-p5pw
        NOTE: 
https://github.com/yhirose/cpp-httplib/commit/17ba303889b8d4d719be3879a70639ab653efb99
 (v0.23.0)
@@ -15150,6 +15152,7 @@ CVE-2025-52902 (File Browser provides a file managing 
interface within a specifi
 CVE-2025-52900 (File Browser provides a file managing interface within a 
specified dir ...)
        NOT-FOR-US: filebrowser
 CVE-2025-52887 (cpp-httplib is a C++11 single-file header-only cross platform 
HTTP/HTT ...)
+       [experimental] - cpp-httplib 0.25.0+ds-1
        - cpp-httplib <unfixed> (bug #1109340)
        NOTE: 
https://github.com/yhirose/cpp-httplib/security/advisories/GHSA-xjhg-gf59-p92h
        NOTE: 
https://github.com/yhirose/cpp-httplib/commit/28dcf379e82a2cdb544d812696a7fd46067eb7f9
 (v0.22.0)
@@ -31273,6 +31276,7 @@ CVE-2025-47297
 CVE-2025-47296
        REJECTED
 CVE-2025-46728 (cpp-httplib is a C++ header-only HTTP/HTTPS server and client 
library. ...)
+       [experimental] - cpp-httplib 0.20.1+ds-3
        - cpp-httplib <unfixed> (bug #1104926)
        NOTE: 
https://github.com/yhirose/cpp-httplib/security/advisories/GHSA-px83-72rx-v57c
        NOTE: Fixed by: 
https://github.com/yhirose/cpp-httplib/commit/7b752106ac42bd5b907793950d9125a0972c8e8e
 (v0.20.1)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4d8801a819c8dbc835ed7f7d9df9773811232900

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4d8801a819c8dbc835ed7f7d9df9773811232900
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to