ALSA-2025:8696

See a problem?
Please try reporting it to the source first.
Source
https://errata.almalinux.org/8/ALSA-2025-8696.html
Import Source
https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2025:8696.json
JSON Data
https://api.test.osv.dev/v1/vulns/ALSA-2025:8696
Related
Published
2025-06-09T00:00:00Z
Modified
2025-07-02T11:34:27Z
Summary
Important: perl-FCGI:0.78 security update
Details

The perl-FCGI package provides a Perl module for writing FastCGI applications. FastCGI is a more efficient alternative to traditional CGI, as it keeps application processes persistent across multiple requests. This module allows Perl web applications to handle requests faster and with lower resource overhead, making it suitable for high-traffic environments.

Security Fix(es):

  • perl-fcgi: FCGI versions 0.44 through 0.82, for Perl, include a vulnerable version of the FastCGI fcgi2 (aka fcgi) library (CVE-2025-40907)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References

Affected packages

AlmaLinux:8 / perl-FCGI

Package

Name
perl-FCGI
Purl
pkg:rpm/almalinux/perl-FCGI

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1:0.78-12.module_el8.10.0+4013+e6a7e623

AlmaLinux:8 / perl-FCGI

Package

Name
perl-FCGI
Purl
pkg:rpm/almalinux/perl-FCGI

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1:0.78-12.module_el8.10.0+4012+cd64a238

AlmaLinux:8 / perl-FCGI

Package

Name
perl-FCGI
Purl
pkg:rpm/almalinux/perl-FCGI

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1:0.78-12.module_el8.10.0+4011+62915be2