Azure Linux 3.0 Security Update: doxygen (CVE-2025-6140)

The version of doxygen installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-6140 advisory. - A vulnerability, which was classified as problematic, was found in spdlog up to 1.15.1. This affects the...

MGASA-2025-0294 Updated spdlog packages fix security vulnerability

Spdlog patternformatter-inl.h scopedpadder resource consumption. CVE-2025-6140...

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS via the scopedpadder function in patternformatter-inl.h. An attacker can cause excessive resource usage by manipulating input processed by this function. Details Denial of Service DoS describes a family of attacks,...

CVE-2025-6140

spdlog up to 1.15.1 contains a vulnerability in the function scoped_padder (pattern_formatter-inl.h) that enables resource consumption on the local host. The issue is disclosed publicly, with upgrade to 1.15.2 addressing it (patch identifier 10320184df1eb4638e253a34b1eb44ce78954094). Affected com...