CVE-2025-40907

Name
CVE-2025-40907
Description
FCGI versions 0.44 through 0.82, for Perl, include a vulnerable version of the FastCGI fcgi2 (aka fcgi) library. The included FastCGI library is affected by CVE-2025-23016, causing an integer overflow (and resultant heap-based buffer overflow) via crafted nameLen or valueLen values in data to the IPC socket. This occurs in ReadParams in fcgiapp.c.
NVD Severity
unknown
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
mailing-list http://www.openwall.com/lists/oss-security/2025/04/23/4
issue-tracking https://github.com/FastCGI-Archives/fcgi2/issues/67
patch https://github.com/FastCGI-Archives/fcgi2/releases/tag/2.4.5
issue-tracking https://github.com/perl-catalyst/FCGI/issues/14
patch https://patch-diff.githubusercontent.com/raw/FastCGI-Archives/fcgi2/pull/74.patch
technical-description https://www.synacktiv.com/en/publications/cve-2025-23016-exploiting-the-fastcgi-library

Match rules

CPE URI Source package Min version Max version
fcgi >= 0.44 <= 0.82
cpe:2.3:a:fastcgi:fcgi:*:*:*:*:*:perl:*:* perl-fcgi >= 0.44 <= 0.82

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
perl-fcgi edge-main 0.82-r5 Leonardo Arena <rnalrd@alpinelinux.org> possibly vulnerable
perl-fcgi edge-main 0.82-r4 Leonardo Arena <rnalrd@alpinelinux.org> possibly vulnerable
perl-fcgi 3.23-main 0.82-r5 Leonardo Arena <rnalrd@alpinelinux.org> possibly vulnerable
perl-fcgi 3.22-main 0.82-r4 Leonardo Arena <rnalrd@alpinelinux.org> possibly vulnerable
perl-fcgi 3.21-main 0.82-r4 Leonardo Arena <rnalrd@alpinelinux.org> possibly vulnerable
perl-fcgi 3.20-main 0.82-r3 Leonardo Arena <rnalrd@alpinelinux.org> possibly vulnerable
perl-fcgi 3.19-main 0.82-r3 Leonardo Arena <rnalrd@alpinelinux.org> possibly vulnerable