CNNVD-202506-1925 Information

CNNVD ID

CNNVD-202506-1925

Related CVE

CVE-2025-6140

• CNNVD Published: 2025-06-16

Description (Chinese)

spdlog是Gabi Melman个人开发者的一个快速C++日志库。 spdlog 1.15.1及之前版本存在安全漏洞，该漏洞源于函数scoped_padder存在资源消耗问题。

Description (English)

Spdlog is a fast-track C++ library for Gabi Melman personal developers. Spdlog 1.15.1 and previous versions have a security loophole, which stems from a resource consumption problem in the function scoped padder.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-06-16

Last Modified

2026-02-24

References

https://nvd.nist.gov/vuln/detail/CVE-2025-6140 https://vigilance.fr/vulnerability/spdlog-denial-of-service-via-scoped-padder-47496 https://access.redhat.com/security/cve/cve-2025-6140

Patch

https://github.com/gabime/spdlog/releases