Nixpkgs Security Tracker

Untriaged

Permalink CVE-2025-14104

6.1 MEDIUM

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): LOW
Privileges required (PR): LOW
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): LOW
Integrity impact (I): NONE
Availability impact (A): HIGH

updated 1 month, 2 weeks ago by @jopejoe1 Activity log

Created automatic suggestion 1 month, 2 weeks ago
@jopejoe1 removed package uutils-util-linux 1 month, 2 weeks ago

Util-linux: util-linux: heap buffer overread in setpwnam() when processing 256-byte usernames

A flaw was found in util-linux. This vulnerability allows a heap buffer overread when processing 256-byte usernames, specifically within the `setpwnam()` function, affecting SUID (Set User ID) login-utils utilities writing to the password database.

References

https://access.redhat.com/security/cve/CVE-2025-14104 x_refsource_REDHAT vdb-entry
RHBZ#2419369 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-14104 x_refsource_REDHAT vdb-entry
RHBZ#2419369 issue-tracking x_refsource_REDHAT
RHBZ#2419369 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-14104 x_refsource_REDHAT vdb-entry
https://access.redhat.com/security/cve/CVE-2025-14104 x_refsource_REDHAT vdb-entry
RHBZ#2419369 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-14104 x_refsource_REDHAT vdb-entry
RHBZ#2419369 issue-tracking x_refsource_REDHAT
RHSA-2026:1696 x_refsource_REDHAT vendor-advisory
https://access.redhat.com/security/cve/CVE-2025-14104 x_refsource_REDHAT vdb-entry
RHBZ#2419369 issue-tracking x_refsource_REDHAT
RHSA-2026:1696 x_refsource_REDHAT vendor-advisory
RHSA-2026:1852 x_refsource_REDHAT vendor-advisory
RHSA-2026:1913 x_refsource_REDHAT vendor-advisory
https://access.redhat.com/security/cve/CVE-2025-14104 x_refsource_REDHAT vdb-entry
RHBZ#2419369 issue-tracking x_refsource_REDHAT
RHSA-2026:1696 x_refsource_REDHAT vendor-advisory
RHSA-2026:1852 x_refsource_REDHAT vendor-advisory
RHSA-2026:1913 x_refsource_REDHAT vendor-advisory
RHSA-2026:2485 x_refsource_REDHAT vendor-advisory
https://access.redhat.com/security/cve/CVE-2025-14104 x_refsource_REDHAT vdb-entry
RHBZ#2419369 issue-tracking x_refsource_REDHAT
RHSA-2026:1696 x_refsource_REDHAT vendor-advisory
RHSA-2026:1852 x_refsource_REDHAT vendor-advisory
RHSA-2026:1913 x_refsource_REDHAT vendor-advisory
RHSA-2026:2485 x_refsource_REDHAT vendor-advisory
RHSA-2026:2563 x_refsource_REDHAT vendor-advisory
https://access.redhat.com/security/cve/CVE-2025-14104 x_refsource_REDHAT vdb-entry
RHBZ#2419369 issue-tracking x_refsource_REDHAT
RHSA-2026:1696 x_refsource_REDHAT vendor-advisory
RHSA-2026:1852 x_refsource_REDHAT vendor-advisory
RHSA-2026:1913 x_refsource_REDHAT vendor-advisory
RHSA-2026:2485 x_refsource_REDHAT vendor-advisory
RHSA-2026:2563 x_refsource_REDHAT vendor-advisory
RHSA-2026:2737 x_refsource_REDHAT vendor-advisory
https://access.redhat.com/security/cve/CVE-2025-14104 x_refsource_REDHAT vdb-entry
RHBZ#2419369 issue-tracking x_refsource_REDHAT
RHSA-2026:1696 x_refsource_REDHAT vendor-advisory
RHSA-2026:1852 x_refsource_REDHAT vendor-advisory
RHSA-2026:1913 x_refsource_REDHAT vendor-advisory
RHSA-2026:2485 x_refsource_REDHAT vendor-advisory
RHSA-2026:2563 x_refsource_REDHAT vendor-advisory
RHSA-2026:2737 x_refsource_REDHAT vendor-advisory
RHSA-2026:2800 x_refsource_REDHAT vendor-advisory
https://access.redhat.com/security/cve/CVE-2025-14104 x_refsource_REDHAT vdb-entry
RHBZ#2419369 issue-tracking x_refsource_REDHAT

Affected products

rhcos

util-linux

*
<2.41.3

util-linux-ng

rhceph/rhceph-7-rhel9

rhceph/rhceph-8-rhel9

rhui5/installer-rhel9

insights-proxy/insights-proxy-container-rhel9

Matching in nixpkgs

pkgs.more

None

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.wall

None

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.eject

None

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.mount

None

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.logger

None

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.umount

None

nixos-unstable 2.41.2
nixos-25.11 -
- nixpkgs-25.11-darwin 2.41.3

pkgs.hexdump

None

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.libuuid

Set of system utilities for Linux

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.utillinux

Set of system utilities for Linux

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.util-linux

Set of system utilities for Linux

pkgs.libsmartcols

Set of system utilities for Linux

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.unixtools.col

None

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.unixtools.fsck

None

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.unixtools.more

None

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.unixtools.wall

None

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.unixtools.eject

None

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.unixtools.fdisk

None

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.unixtools.mount

None

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.unixtools.write

None

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.unixtools.column

None

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.unixtools.getopt

None

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.unixtools.logger

None

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.unixtools.script

None

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.unixtools.umount

None

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.unixtools.hexdump

None

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.unixtools.whereis

None

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.util-linuxMinimal

Set of system utilities for Linux

nixos-unstable 2.41.2
- nixpkgs-unstable 2.41.3
- nixos-unstable-small 2.41.3
nixos-25.11 -
- nixos-25.11-small 2.41.3
- nixpkgs-25.11-darwin 2.41.3

pkgs.unixtools.util-linux

None

nixos-unstable 1003.1-2008
- nixpkgs-unstable 1003.1-2008
- nixos-unstable-small 1003.1-2008
nixos-25.11 -
- nixos-25.11-small 1003.1-2008
- nixpkgs-25.11-darwin 1003.1-2008

Package maintainers

@numinit Morgan Jones <me+nixpkgs@numin.it>

Suggestion detail

References

Affected products

Matching in nixpkgs

pkgs.more

pkgs.wall

pkgs.eject

pkgs.mount

pkgs.logger

pkgs.umount

pkgs.hexdump

pkgs.libuuid

pkgs.utillinux

pkgs.util-linux

pkgs.libsmartcols

pkgs.unixtools.col

pkgs.unixtools.fsck

pkgs.unixtools.more

pkgs.unixtools.wall

pkgs.unixtools.eject

pkgs.unixtools.fdisk

pkgs.unixtools.mount

pkgs.unixtools.write

pkgs.unixtools.column

pkgs.unixtools.getopt

pkgs.unixtools.logger

pkgs.unixtools.script

pkgs.unixtools.umount

pkgs.unixtools.hexdump

pkgs.unixtools.whereis

pkgs.util-linuxMinimal

pkgs.unixtools.util-linux

Package maintainers