Information on source package libcoap3

Available versions

Release	Version
bookworm	4.3.1-1
trixie	4.3.4-1.1+deb13u1
forky	4.3.5-1
sid	4.3.5-1

Open issues

Bug	bookworm	trixie	forky	sid	Description
CVE-2025-65501	vulnerable (no DSA)	vulnerable (no DSA)	vulnerable	vulnerable	Null pointer dereference in coap_dtls_info_callback() in OISM libcoap ...
CVE-2025-65500	vulnerable (no DSA)	vulnerable (no DSA)	vulnerable	vulnerable	NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_op ...
CVE-2025-65499	vulnerable (no DSA)	vulnerable (no DSA)	vulnerable	vulnerable	Array index error in tls_verify_call_back() in src/coap_openssl.c in O ...
CVE-2025-65498	vulnerable (no DSA)	vulnerable (no DSA)	vulnerable	vulnerable	NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_op ...
CVE-2025-65497	vulnerable (no DSA)	vulnerable (no DSA)	vulnerable	vulnerable	NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_op ...
CVE-2025-65496	vulnerable (no DSA)	vulnerable (no DSA)	vulnerable	vulnerable	NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_op ...
CVE-2025-65495	vulnerable (no DSA)	vulnerable (no DSA)	vulnerable	vulnerable	Integer signedness error in tls_verify_call_back() in src/coap_openssl ...
CVE-2025-65494	vulnerable (no DSA)	vulnerable (no DSA)	vulnerable	vulnerable	NULL pointer dereference in get_san_or_cn_from_cert() in src/coap_open ...
CVE-2025-65493	vulnerable (no DSA)	vulnerable (no DSA)	vulnerable	vulnerable	NULL pointer dereference in src/coap_openssl.c in OISM libcoap 4.3.5 a ...
CVE-2024-46304	vulnerable (no DSA, ignored)	vulnerable (no DSA, ignored)	fixed	fixed	A NULL pointer dereference in libcoap v4.3.5-rc2 and below allows a re ...
CVE-2024-31031	vulnerable (no DSA, ignored)	fixed	fixed	fixed	An issue in `coap_pdu.c` in libcoap 4.3.4 allows attackers to cause un ...
CVE-2023-30362	vulnerable (no DSA, ignored)	fixed	fixed	fixed	Buffer Overflow vulnerability in coap_send function in libcoap library ...

Resolved issues

Bug	Description
CVE-2025-50518	A use-after-free vulnerability exists in the coap_delete_pdu_lkd funct ...
CVE-2024-0962	A vulnerability was found in obgm libcoap 4.3.4. It has been rated as ...
CVE-2023-51847	An issue in obgm and Libcoap v.a3ed466 allows a remote attacker to cau ...