| Release | Version |
|---|---|
| bullseye | 4.0.20-2 |
| bookworm | 4.1.6-3 |
| trixie | 4.3.5-1 |
| forky | 4.3.5-3 |
| sid | 4.3.5-3 |
| Bug | bullseye | bookworm | trixie | forky | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2025-11678 | vulnerable | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | Stack-based Buffer Overflowin lws_adns_parse_label in warmcat libwebso ... |
| CVE-2025-11677 | vulnerable | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | Use After Free in WebSocket server implementation in lws_handshake_ser ... |
| Bug | Description |
|---|---|
| CVE-2025-11680 | Out-of-bounds Write in unfilter_scanline in warmcat libwebsockets allo ... |
| CVE-2025-11679 | Out-of-bounds Read in lws_upng_emit_next_line in warmcat libwebsockets ... |
| CVE-2025-1866 | Improper Restriction of Operations within the Bounds of a Memory Buffe ... |