SB2025110358 - Multiple vulnerabilities in libwebsockets
Published: November 3, 2025
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 4 secuirty vulnerabilities.
1) Stack-based buffer overflow (CVE-ID: CVE-2025-11678)
The vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error within the lws_adns_parse_label() function in lib/system/async-dns/async-dns-parse.c. A remote unauthenticated attacker can trigger a stack-based buffer overflow and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
2) Use-after-free (CVE-ID: CVE-2025-11677)
The vulnerability allows a remote attacker to perform a denial of service attack.
The vulnerability exists due to a use-after-free error within the lws_handshake_server() function in lib/roles/http/server/server.c. A remote attacker can send specially crafted data to the application and perform a denial of service attack.
3) Out-of-bounds read (CVE-ID: CVE-2025-11679)
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition within the lws_upng_emit_next_line() function in lib/misc/upng.c. A remote attacker can trigger an out-of-bounds read error and read contents of memory on the system.
4) Out-of-bounds write (CVE-ID: CVE-2025-11680)
The vulnerability allows a remote attacker to compromise vulnerable system.
The vulnerability exists due to a boundary error within the lws_upng_decode() function in lib/misc/upng.c. A remote attacker can trigger an out-of-bounds write and execute arbitrary code on the target system.
Remediation
Install update from vendor's website.
References
- https://libwebsockets.org/git/libwebsockets/commit?id=2bb9598562b37c942ba5b04bcde3f7fdf66a9d3a
- https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2025-11678
- https://libwebsockets.org/git/libwebsockets/commit?id=2f082ec31261f556969160143ba94875d783971a
- https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2025-11677
- https://libwebsockets.org/git/libwebsockets/commit?id=7df24cca7144d7bc9233b6b0a71108bd154ce101
- https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2025-11679
- https://libwebsockets.org/git/libwebsockets/commit?id=2b715249f39291c86443b969a1088d59b6a89b78
- https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2025-11680