Packages
- cpp-httplib - A C++ header-only HTTP/HTTPS server and client library
Details
It was discovered that cpp-httplib incorrectly percent-decoded HTTP
request header values. A remote attacker could use this to inject crafted
header content possibly leading to response splitting, log injection
or proxy smuggling.
It was discovered that cpp-httplib incorrectly percent-decoded HTTP
request header values. A remote attacker could use this to inject crafted
header content possibly leading to response splitting, log injection
or proxy smuggling.
Update instructions
In general, a standard system update will make all the necessary changes.
Learn more about how to get the fixes.The problem can be corrected by updating your system to the following package versions:
| Ubuntu Release | Package Version | ||
|---|---|---|---|
| 26.04 LTS resolute | libcpp-httplib-dev – 0.26.0+ds-2ubuntu3+esm1 | ||
| libcpp-httplib0.26 – 0.26.0+ds-2ubuntu3+esm1 | |||
| 25.10 questing | libcpp-httplib-dev – 0.18.7-1ubuntu0.25.10.2 | ||
| libcpp-httplib0.18 – 0.18.7-1ubuntu0.25.10.2 | |||
| 24.04 LTS noble | libcpp-httplib-dev – 0.14.3+ds-1.1ubuntu0.1~esm2 | ||
| libcpp-httplib0.14t64 – 0.14.3+ds-1.1ubuntu0.1~esm2 | |||
| 22.04 LTS jammy | libcpp-httplib-dev – 0.10.3+ds-1ubuntu0.1~esm2 | ||
| libcpp-httplib0 – 0.10.3+ds-1ubuntu0.1~esm2 | |||
Reduce your security exposure
Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.