espressif/esp-idf
1
0
Fork 0
mirror of https://github.com/espressif/esp-idf.git synced 2026-04-27 19:13:21 +00:00
Code Issues Packages Projects Releases Wiki Activity

docs: update vulnerabilities guide to mention new CVEs

Browse Source
This commit is contained in:
Mahavir Jain
2025-11-26 10:06:26 +05:30
parent c6f14a5663
commit 20b1b14c5d
1 changed files with 24 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
docs/en/security/vulnerabilities.rst
+24
View File
@@ -10,6 +10,28 @@ This page briefly lists all of the vulnerabilities that are discovered and fixed
CVE-2025
--------
CVE-2025-65092
~~~~~~~~~~~~~~
ESP32-P4 JPEG Decoder Header Parsing Vulnerability
* Espressif Advisory: NA (Published on GitHub)
* Impact: Applicable for ESP-IDF (ESP32-P4 SoC only)
* Resolution: Please see advisory for details
* Advisory pointer: `GHSA-vcw6-jc3p-4gj8`_
CVE-2025-64342
~~~~~~~~~~~~~~
ESP32 Bluetooth Controller Invalid Access Address Vulnerability
* Espressif Advisory: NA (Published on GitHub)
* Impact: Applicable for ESP-IDF (ESP32 SoC only)
* Resolution: Please see advisory for details
* Advisory pointer: `GHSA-8mg7-9qpg-p92v`_
CVE-2025-55297
~~~~~~~~~~~~~~
@@ -221,3 +243,5 @@ Security Advisory Concerning Wi-Fi Authentication Bypass
.. _`GHSA-wm57-466g-mhrr` : https://github.com/espressif/esp-idf/security/advisories/GHSA-wm57-466g-mhrr
.. _`GHSA-hqhh-cp47-fv5g` : https://github.com/espressif/esp-idf/security/advisories/GHSA-hqhh-cp47-fv5g
.. _`GHSA-9w88-r2vm-qfc4` : https://github.com/espressif/esp-idf/security/advisories/GHSA-9w88-r2vm-qfc4
.. _`GHSA-8mg7-9qpg-p92v` : https://github.com/espressif/esp-idf/security/advisories/GHSA-8mg7-9qpg-p92v
.. _`GHSA-vcw6-jc3p-4gj8` : https://github.com/espressif/esp-idf/security/advisories/GHSA-vcw6-jc3p-4gj8