Hi Moritz,
On Tue Jul 15, 2025 at 2:37 PM CEST, Moritz Mühlenhoff wrote:
Package: cpp-httplib
X-Debbugs-CC: t...@security.debian.org
Severity: grave
Tags: security
Hi,
The following vulnerabilities were published for cpp-httplib.
CVE-2025-52887[0]:
[...]
CVE-2025-53628[1]:
[...]
CVE-2025-53629[2]:
Thank you for the report.
I'm in Debconf right now, and tomorrow I'll focus on fixing this. If
you happen to be here, I'd be happy to meet you!
Since upstream makes breaking changes quite often, I'm not sure I'll be
able to easily backport the fixes. I'll focus on fixing CVE-2025-53629
first, since the other too seem "just" memory leaks.
Bye!
