Ubuntu 25.10: cpp-httplib Critical HTTP Access Attack 2025-66570
ubuntu
January 15, 2026
cpp-httplib could allow unintended access to network services if it received specially crafted network traffic.
Summary
cpp-httplib could allow unintended access to network services if it
received specially crafted network traffic.
Software Description:
- cpp-httplib: A C++11 single-file header-only cross platform HTTP/HTTPS library.
Details:
It was discovered that cpp-httplib did not correctly handle HTTP headers.
A remote attacker could possibly use this issue to bypass authorization
and impersonate users.
Topics Covered
Update Instructions
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 25.10
libcpp-httplib-dev 0.18.7-1ubuntu0.25.10.1
libcpp-httplib0.18 0.18.7-1ubuntu0.25.10.1
Ubuntu 25.04
libcpp-httplib-dev 0.18.7-1ubuntu0.25.04.1
libcpp-httplib0.18 0.18.7-1ubuntu0.25.04.1
Ubuntu 24.04 LTS
libcpp-httplib-dev 0.14.3+ds-1.1ubuntu0.1~esm1
Available with Ubuntu Pro
libcpp-httplib0.14t64 0.14.3+ds-1.1ubuntu0.1~esm1
Available with Ubuntu Pro
Ubuntu 22.04 LTS
libcpp-httplib-dev 0.10.3+ds-1ubuntu0.1~esm1
Available with Ubuntu Pro
libcpp-httplib0 0.10.3+ds-1ubuntu0.1~esm1
Available with Ubuntu Pro
In general, a standard system update will make all the necessary changes.References
https://ubuntu.com/security/notices/USN-7962-1
CVE-2025-66570
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Ubuntu Security Notice USN-7962-1
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!