Lucene search
K

16 matches found

OpenVAS
OpenVAS
added 2025/09/15 12:0 a.m.2 views

SUSE: Security Advisory (SUSE-SU-2025:03198-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.01301EPSS
Exploits7References13
SUSE Linux
SUSE Linux
added 2025/09/12 12:15 p.m.5 views

Security update for curl

This update for curl fixes the following issues: Update to version 8.14.1 jscPED-13055, jscPED-13056. Security issues fixed: CVE-2025-0665: eventfd double close can cause libcurl to act unreliably bsc1236589. CVE-2025-4947: QUIC certificate check is skipped with wolfSSL allows for MITM attacks...

8.3CVSS7.6AI score0.01301EPSS
Exploits7References36
Tenable Nessus
Tenable Nessus
added 2025/07/11 12:0 a.m.5 views

Azure Linux 3.0 Security Update: curl / mysql (CVE-2025-0665)

The version of curl / mysql installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-0665 advisory. - libcurl would wrongly close the same eventfd file descriptor twice when taking down a connection channe...

7CVSS8AI score0.01253EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/07/11 12:0 a.m.5 views

CBL Mariner 2.0 Security Update: curl / mysql (CVE-2025-0665)

The version of curl / mysql installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-0665 advisory. - libcurl would wrongly close the same eventfd file descriptor twice when taking down a connection channe...

7CVSS8.1AI score0.01253EPSS
Exploits1References2
F5 Networks
F5 Networks
added 2025/04/21 5:17 a.m.13 views

K000150939: cURL vulnerability CVE-2025-0665

Security Advisory Description libcurl would wrongly close the same eventfd file descriptor twice when taking down a connection channel after having completed a threaded name resolve. CVE-2025-0665 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory...

7CVSS8.4AI score0.01253EPSS
Exploits1
CBLMariner
CBLMariner
added 2025/03/13 9:13 p.m.13 views

CVE-2025-0665 affecting package curl for versions less than 8.11.1-3

CVE-2025-0665 affecting package curl for versions less than 8.11.1-3. A patched version of the package is available...

7CVSS6.6AI score0.01253EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.18 views

Curl < 8.12.0 Double Close (CVE-2025-0665)

libcurl would wrongly close the same eventfd file descriptor twice when taking down a connection channel after having completed a threaded name resolve. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 8090...

7CVSS8AI score0.01253EPSS
Exploits1References2
OSV
OSV
added 2025/02/07 5:58 a.m.1 views

BELL-CVE-2025-0665

Bulletin has no description...

7CVSS8.5AI score0.01253EPSS
Exploits1References1
OSV
OSV
added 2025/02/05 10:15 a.m.0 views

DEBIAN-CVE-2025-0665

libcurl would wrongly close the same eventfd file descriptor twice when taking down a connection channel after having completed a threaded name resolve...

7CVSS8.2AI score0.01253EPSS
Exploits1References1
Wolfi
Wolfi
added 2025/02/05 10:15 a.m.23 views

CVE-2025-0665 vulnerabilities

Vulnerabilities for packages: curl...

7CVSS7.1AI score0.01253EPSS
Exploits1
Chainguard
Chainguard
added 2025/02/05 10:15 a.m.19 views

CVE-2025-0665 vulnerabilities

Vulnerabilities for packages: curl...

7CVSS6.9AI score0.01253EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2025/02/05 9:16 a.m.23 views

CVE-2025-0665 eventfd double close

libcurl would wrongly close the same eventfd file descriptor twice when taking down a connection channel after having completed a threaded name resolve...

9.4AI score0.01253EPSS
Exploits1References3
CVE
CVE
added 2025/02/05 9:16 a.m.423 views

CVE-2025-0665

CVE-2025-0665 affects libcurl/curl. The issue is double-closing the same eventfd file descriptor when bringing down a connection channel after a threaded name resolve, leading to potential instability and misbehavior. Several sources note that this can allow a remote attacker to execute arbitrary...

7CVSS7AI score0.01253EPSS
Exploits1References6Affected Software1
Debian CVE
Debian CVE
added 2025/02/05 9:16 a.m.16 views

CVE-2025-0665

libcurl would wrongly close the same eventfd file descriptor twice when taking down a connection channel after having completed a threaded name resolve...

7CVSS8.2AI score0.01253EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2025/02/05 12:0 a.m.20 views

CVE-2025-0665

libcurl would wrongly close the same eventfd file descriptor twice when taking down a connection channel after having completed a threaded name resolve...

7CVSS6.8AI score0.01253EPSS
Exploits1References2
Hacker One
Hacker One
added 2025/01/22 7:38 p.m.1283 views

curl: CVE-2025-0665: eventfd double close

Summary: GitHub issue 15725 describes a double close in libcurl 8.11.1. I believe that a double close in multi threaded code should be considered a security vulnerability. A fix already exists for this, so it should be good in the next release. I am not 100% sure this is the place to be making su...

9.8CVSS8.8AI score0.01253EPSS
Exploits1
Rows per page
Query Builder