CVE-2025-23016

FastCGI fcgi2 aka fcgi 2.x through 2.4.4 has an integer overflow and resultant heap-based buffer overflow via crafted nameLen or valueLen values in data to the IPC socket. This occurs in ReadParams in fcgiapp.c...

Fedora 43 : fcgi (2025-93042e260c)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-93042e260c advisory. 2.4.7 release, fixes CVE-2025-23016 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has no...

Fedora 41 : fcgi (2025-67511a59e3)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-67511a59e3 advisory. 2.4.7 release, fixes CVE-2025-23016 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has no...

Fedora: Security Advisory (FEDORA-2025-d7c1457e7e)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2025-67511a59e3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

TencentOS Server 4: fcgi (TSSA-2025:0422)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0422 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

EUVD-2025-15438

Malicious code in bioql PyPI...

SUSE: Security Advisory (SUSE-SU-2025:02369-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2025:02372-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Advisory (SUSE-SU-2025:02372-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES12 Security Update : FastCGI (SUSE-SU-2025:02369-1)

The remote SUSE Linux SLES12 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2025:02369-1 advisory. - CVE-2025-23016: Fixed integer overflow in FastCGI fcgi2 library bsc1243325 Tenable has extracted the preceding description block directly from the...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : FastCGI (SUSE-SU-2025:02372-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:02372-1 advisory. - CVE-2025-23016: Fixed integer overflow in FastCGI fcgi2 library bsc1243325 Tenable has extracted the...

SUSE-SU-2025:02372-1 Security update for FastCGI

This update for FastCGI fixes the following issues: - CVE-2025-23016: Fixed integer overflow in FastCGI fcgi2 library bsc1243325...

SUSE-SU-2025:02369-1 Security update for FastCGI

This update for FastCGI fixes the following issues: - CVE-2025-23016: Fixed integer overflow in FastCGI fcgi2 library bsc1243325...

FastCGI-2.4.6-1.1 on GA media (moderate)

FastCGI-2.4.6-1.1 on GA media Announcement ID: openSUSE-SU-2025:15348-1 Rating: moderate Cross-References: CVE-2025-23016 CVSS scores: CVE-2025-23016 SUSE : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be...

Alibaba Cloud Linux 3 : 0088: perl-FCGI:0.78 (ALINUX3-SA-2025:0088)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2025:0088 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2025-40907: FCGI versions 0.44 through 0.82, fo...

Medium: perl-FCGI

Issue Overview: FCGI versions 0.44 through 0.82, for Perl, include a vulnerable version of the FastCGI fcgi2 aka fcgi library. The included FastCGI library is affected by CVE-2025-23016, causing an integer overflow and resultant heap-based buffer overflow via crafted nameLen or valueLen values in...

Amazon Linux 2 : perl-FCGI (ALAS-2025-2880)

The version of perl-FCGI installed on the remote host is prior to 0.74-8. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2880 advisory. FCGI versions 0.44 through 0.82, for Perl, include a vulnerable version of the FastCGI fcgi2 aka fcgi library. The included FastCG...

Fedora: Security Advisory (FEDORA-2025-bf22da3848)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2025-e5cc4338e7)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...