Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Fedora 41: FEDORA-2025-2a4df5f325 critical: perl-FCGI buffer overflow

fedora
Calendar Grey June 6, 2025
Dist Fedora Esm H88
Security flaw patched in perl-FCGI within Fedora. Protect your system against potential vulnerabilities.
This release fixes an integer and heap buffer overflow when processing a user FastCGI request.

Summary

FastCGI Perl bindings.

Update Information:

This release fixes an integer and heap buffer overflow when processing a user FastCGI request.

Topics%20covered

Topics Covered

security advisory buffer overflow critical Fedora FastCGI perl-FCGI

Change Log

* Mon May 19 2025 Petr Pisar - 1:0.82-13 - Fix CVE-2025-40907 (integer overflow when parsing FastCGI parameters) (bug #2366847)

References


[ 1 ] Bug #2366847 - CVE-2025-40907 perl-fcgi: FCGI versions 0.44 through 0.82, for Perl, include a vulnerable version of the FastCGI fcgi2 (aka fcgi) library https://bugzilla.redhat.com/show_bug.cgi?id=2366847

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-2a4df5f325' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: perl-FCGI
Product: Fedora 41
Version: 0.82
Release: 13.fc41
URL: https://metacpan.org/release/FCGI
Summary: FastCGI Perl bindings

Topics%20covered

Topics Covered

security advisory buffer overflow critical Fedora FastCGI perl-FCGI

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here