Wind River Support Network

HomeDefectsLIN1023-11551
Fixed

LIN1023-11551 : Security Advisory - go - CVE-2025-22870

Created: Mar 1, 2025    Updated: Jun 2, 2025
Resolved Date: May 25, 2025
Found In Version: 10.23.30.1
Fix Version: 10.23.30.17
Severity: Standard
Applicable for: Wind River Linux LTS 23
Component/s: Userspace

Description

Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NO_PROXY environment variable is set to "*.example.com", a request to "[::1%25.example.com]:80` will incorrectly match and not be proxied.

https://nvd.nist.gov/vuln/detail/CVE-2025-22870

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube