espressif/esp-idf
1
0
Fork 0
mirror of https://github.com/espressif/esp-idf.git synced 2026-04-27 19:13:21 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merge branch 'docs/update_cve_2026-25532_v6.0' into 'release/v6.0'

Browse Source 
docs: update vulnerabilities guide to mention CVE 2026-25532 (v6.0)

See merge request espressif/esp-idf!45637
This commit is contained in:
Jiang Jiang Jian
2026-02-13 11:41:50 +08:00
parent 4367f08fc9 eca8f20165
commit 5773afd8d0
1 changed files with 15 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
docs/en/security/vulnerabilities.rst
+15
View File
@@ -7,6 +7,20 @@ This page briefly lists all of the vulnerabilities that are discovered and fixed
.. note::
Please refer to ``latest`` version of this documentation guide for up-to-date information.
CVE-2026
--------
CVE-2026-25532
~~~~~~~~~~~~~~
WPS Enrollee Fragment Integer Underflow Vulnerability
* Espressif Advisory: NA (Published on GitHub)
* Impact: Applicable for ESP-IDF
* Resolution: Please see advisory for details
* Advisory pointer: `GHSA-m2h2-683f-9mw7`_
CVE-2025
--------
@@ -221,3 +235,4 @@ Security Advisory Concerning Wi-Fi Authentication Bypass
.. _`GHSA-wm57-466g-mhrr` : https://github.com/espressif/esp-idf/security/advisories/GHSA-wm57-466g-mhrr
.. _`GHSA-hqhh-cp47-fv5g` : https://github.com/espressif/esp-idf/security/advisories/GHSA-hqhh-cp47-fv5g
.. _`GHSA-9w88-r2vm-qfc4` : https://github.com/espressif/esp-idf/security/advisories/GHSA-9w88-r2vm-qfc4
.. _`GHSA-m2h2-683f-9mw7` : https://github.com/espressif/esp-idf/security/advisories/GHSA-m2h2-683f-9mw7