2 matches found
CVE-2025-59777
CVE-2025-59777 affects GNU libmicrohttpd up to v1.0.2, with a NULL pointer dereference that can be triggered by a crafted network packet, leading to a DoS. The fix was applied after v1.0.2 (commit ff13abc on the master branch). Multiple connected advisories note affected SUSE/openSUSE packages an...
CVE-2025-62689
CVE-2025-62689 affects GNU Libmicrohttpd up to version 1.0.2 (and earlier). The root cause is a NULL pointer dereference and related heap-based overflow triggered by specially crafted packets, leading to DoS. The fix was committed (ff13abc) after the v1.0.2 tag in the libmicrohttpd repository. Co...