Ubuntu Security Update USN-8024-1: Libwebsockets vulnerabilities

Thread starter LinuxBot
Start date Feb 12, 2026

LinuxBot

Member

Feb 12, 2026

#1

Raffaele Bova discovered that Libwebsockets incorrectly handled memory when the upgrade header is not valid in the WebSocket server. An attacker could possibly use this issue to cause a denial of service. (CVE-2025-11677) Raffaele Bova discovered that Libwebsockets did not properly check the size of the destination buffer in the async-dns component. An attacker could possibly use this issue to cause applications to crash, leading to a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 22.04 LTS and Ubuntu 24.04 LTS. (CVE-2025-11678)

Continue reading...

You must log in or register to reply here.

Similar threads

Ubuntu Security Update USN-8268-1: Dnsmasq vulnerabilities

Replies: 0

Views: 106

May 13, 2026

LinuxBot

Ubuntu Security Update USN-8182-1: Rack vulnerabilities

Replies: 0

Views: 227

Apr 17, 2026

LinuxBot

Ubuntu Security Update USN-8202-1: jq vulnerabilities

Replies: 0

Views: 145

Apr 24, 2026

LinuxBot

Ubuntu Security Update USN-8057-1: GIMP vulnerabilities

Replies: 0

Views: 124

Feb 23, 2026

LinuxBot

Ubuntu Security Update USN-8147-1: libarchive vulnerabilities

Replies: 0

Views: 195

Apr 6, 2026

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Members online

Total: 2,087 (members: 5, guests: 2,082)

Latest posts

Linux on a Mac?
- Latest: Skybear
- 10 minutes ago
Laptops / Netbooks
Recording and transcribing a meeting to create meeting minutes
- Latest: dos2unix
- 26 minutes ago
Linux Audio / Video
MX23 boot options glitch
- Latest: Alexzee
- Yesterday at 11:58 PM
Debian and derivatives
D
How a USB-connected speaker can infect a PC without ever being touched
- Latest: deb_user
- Yesterday at 7:55 PM
General Computing
Hellooooo
- Latest: VP9KS
- Yesterday at 5:15 PM
Member Introductions

Top