[ALSA-2025:9635] Moderate: weldr-client security update
Type:
security
Severity:
moderate
Release date:
2025-06-30
Description:
Command line utility to control osbuild-composer Security Fix(es): * net/[http:](http:) Request smuggling due to acceptance of invalid chunked data in net/http (CVE-2025-22871) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 weldr-client-35.12-4.el9_6.aarch64.rpm d58c355349ffbf09a4c0179999e30cad4ce5b3c35dd7ece2397626e9451c8519
ppc64le weldr-client-35.12-4.el9_6.ppc64le.rpm 8d2e56bbe4006adf36411375061b7f9210911baa9d90166e331121d5e64e12cc
s390x weldr-client-35.12-4.el9_6.s390x.rpm 9902c9cb963540277ed0137d79924fde4c2686564bd34cd0592d7827dac69cc6
x86_64 weldr-client-35.12-4.el9_6.x86_64.rpm cbacd12381707b6264a395c2d69432d07b2a7a4717aa92f28db8fbc56efd1055
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.