2349439 – (CVE-2025-1866) CVE-2025-1866 libwebsockets: Undefined Behavior Due to Out-of-Bounds Pointer Arithmetic in libwebsockets

Bug 2349439 (CVE-2025-1866) - CVE-2025-1866 libwebsockets: Undefined Behavior Due to Out-of-Bounds Pointer Arithmetic in libwebsockets

Summary: CVE-2025-1866 libwebsockets: Undefined Behavior Due to Out-of-Bounds Pointer ...

Keywords:
Status:	NEW
Alias:	CVE-2025-1866
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	high
Severity:	high
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2025-03-03 09:01 UTC by OSIDB Bzimport
Modified:	2025-09-03 08:28 UTC (History)
CC List:	17 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-03-03 09:01:07 UTC

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in warmcat libwebsockets allows Pointer Manipulation, potentially leading to out-of-bounds memory access. This issue affects libwebsockets before 4.3.4 and is present in code built specifically for the Win32 platform.

By default, the affected code is not executed unless one of the following conditions is met:

LWS_WITHOUT_EXTENSIONS (default ON) is manually set to OFF in CMake.
LWS_WITH_HTTP_STREAM_COMPRESSION (default OFF) is manually set to ON in CMake.
Despite these conditions, when triggered in affected configurations, this vulnerability may allow attackers to manipulate pointers, potentially leading to memory corruption or unexpected behavior.

Note You need to log in before you can comment on or make changes to this bug.