Automatically generated suggestions

to slate a suggestion for refinement.

to mark a suggestion as irrelevant and log the reason.

View:

Compact

Detailed

Permalink CVE-2025-49796

9.1 CRITICAL

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): HIGH
Availability impact (A): HIGH

created 6 months ago

Libxml: type confusion leads to denial of service (dos)

A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory corruption issue. This flaw allows an attacker to craft a malicious XML input file that can lead libxml to crash, resulting in a denial of service or other possible undefined behavior due to sensitive data being corrupted in memory.

References

https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
RHSA-2025:18240 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
RHSA-2025:18240 vendor-advisory x_refsource_REDHAT
RHSA-2025:19020 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
RHSA-2025:18240 vendor-advisory x_refsource_REDHAT
RHSA-2025:19020 vendor-advisory x_refsource_REDHAT
RHSA-2025:19046 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
RHSA-2025:18240 vendor-advisory x_refsource_REDHAT
RHSA-2025:19020 vendor-advisory x_refsource_REDHAT
RHSA-2025:19041 vendor-advisory x_refsource_REDHAT
RHSA-2025:19046 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
RHSA-2025:18240 vendor-advisory x_refsource_REDHAT
RHSA-2025:19020 vendor-advisory x_refsource_REDHAT
RHSA-2025:19041 vendor-advisory x_refsource_REDHAT
RHSA-2025:19046 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
https://lists.debian.org/debian-lts-announce/2025/07/msg00014.html
RHBZ#2372385 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
RHSA-2025:18240 vendor-advisory x_refsource_REDHAT
RHSA-2025:19020 vendor-advisory x_refsource_REDHAT
RHSA-2025:19041 vendor-advisory x_refsource_REDHAT
RHSA-2025:19046 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
https://lists.debian.org/debian-lts-announce/2025/07/msg00014.html
https://lists.debian.org/debian-lts-announce/2025/07/msg00014.html
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
RHSA-2025:18240 vendor-advisory x_refsource_REDHAT
RHSA-2025:19020 vendor-advisory x_refsource_REDHAT
RHSA-2025:19041 vendor-advisory x_refsource_REDHAT
RHSA-2025:19046 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
RHSA-2025:18240 vendor-advisory x_refsource_REDHAT
RHSA-2025:19020 vendor-advisory x_refsource_REDHAT
RHSA-2025:19041 vendor-advisory x_refsource_REDHAT
RHSA-2025:19046 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
https://lists.debian.org/debian-lts-announce/2025/07/msg00014.html
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
RHSA-2025:18240 vendor-advisory x_refsource_REDHAT
RHSA-2025:19020 vendor-advisory x_refsource_REDHAT
RHSA-2025:19041 vendor-advisory x_refsource_REDHAT
RHSA-2025:19046 vendor-advisory x_refsource_REDHAT
RHSA-2025:19894 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
https://lists.debian.org/debian-lts-announce/2025/07/msg00014.html
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
RHSA-2025:18240 vendor-advisory x_refsource_REDHAT
RHSA-2025:19020 vendor-advisory x_refsource_REDHAT
RHSA-2025:19041 vendor-advisory x_refsource_REDHAT
RHSA-2025:19046 vendor-advisory x_refsource_REDHAT
RHSA-2025:19894 vendor-advisory x_refsource_REDHAT
RHSA-2025:21913 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
https://lists.debian.org/debian-lts-announce/2025/07/msg00014.html
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
RHSA-2025:18240 vendor-advisory x_refsource_REDHAT
RHSA-2025:19020 vendor-advisory x_refsource_REDHAT
RHSA-2025:19041 vendor-advisory x_refsource_REDHAT
RHSA-2025:19046 vendor-advisory x_refsource_REDHAT
RHSA-2025:19894 vendor-advisory x_refsource_REDHAT
RHSA-2025:21913 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
https://lists.debian.org/debian-lts-announce/2025/07/msg00014.html
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
RHSA-2025:18240 vendor-advisory x_refsource_REDHAT
RHSA-2025:19020 vendor-advisory x_refsource_REDHAT
RHSA-2025:19041 vendor-advisory x_refsource_REDHAT
RHSA-2025:19046 vendor-advisory x_refsource_REDHAT
RHSA-2025:19894 vendor-advisory x_refsource_REDHAT
RHSA-2025:21913 vendor-advisory x_refsource_REDHAT
RHSA-2026:0934 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-49796 x_refsource_REDHAT vdb-entry
RHBZ#2372385 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
https://lists.debian.org/debian-lts-announce/2025/07/msg00014.html

Affected products

rhcos

libxml2

<2.15.0
*

discovery/discovery-server-rhel9

Red Hat JBoss Core Services 2.4.62.SP2

web-terminal/web-terminal-tooling-rhel9

cert-manager/jetstack-cert-manager-rhel9

web-terminal/web-terminal-rhel9-operator

openshift-serverless-1/logic-rhel8-operator

openshift-serverless-1/logic-operator-bundle

insights-proxy/insights-proxy-container-rhel9

openshift-serverless-1/logic-swf-builder-rhel8

openshift-serverless-1/logic-swf-devmode-rhel8

compliance/openshift-file-integrity-rhel8-operator

openshift-serverless-1/logic-db-migrator-tool-rhel8

registry.redhat.io/discovery/discovery-server-rhel9

openshift-serverless-1/logic-management-console-rhel8

openshift-serverless-1/logic-data-index-ephemeral-rhel8

openshift-serverless-1/logic-data-index-postgresql-rhel8

openshift-serverless-1/logic-jobs-service-ephemeral-rhel8

openshift-serverless-1/logic-jobs-service-postgresql-rhel8

openshift-serverless-1/logic-kn-workflow-cli-artifacts-rhel8

registry.redhat.io/insights-proxy/insights-proxy-container-rhel9

Matching in nixpkgs

pkgs.libxml2

XML parsing library for C

nixos-unstable -
- nixpkgs-unstable 2.14.5

pkgs.libxml2_13

XML parsing library for C

nixos-unstable -
- nixpkgs-unstable 2.13.8

pkgs.libxml2Python

None

nixos-unstable -
- nixpkgs-unstable 2.14.5

pkgs.sbclPackages.cl-libxml2

None

nixos-unstable -
- nixpkgs-unstable libxml2-20130615-git

pkgs.python312Packages.libxml2

XML parsing library for C

nixos-unstable -
- nixpkgs-unstable 2.14.5

pkgs.python313Packages.libxml2

XML parsing library for C

nixos-unstable -
- nixpkgs-unstable 2.14.5

pkgs.tests.pkg-config.defaultPkgConfigPackages.%22libxml-2.0%22

Test whether libxml2-2.14.5 exposes pkg-config modules libxml-2.0

nixos-unstable -
- nixpkgs-unstable libxml2

Package maintainers

@jtojnar Jan Tojnar <jtojnar@gmail.com>
@gepbird Gutyina Gergő <gutyina.gergo.2@gmail.com>
@7c6f434c Michael Raskin <7c6f434c@mail.ru>
@Uthar Kasper Gałkowski <galkowskikasper@gmail.com>
@nagy Daniel Nagy <danielnagy@posteo.de>
@hraban Hraban Luyat <hraban@0brg.net>
@lukego Luke Gorrie <luke@snabb.co>

Permalink CVE-2025-6035

6.6 MEDIUM

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): LOW
Privileges required (PR): LOW
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): LOW
Integrity impact (I): LOW
Availability impact (A): HIGH

created 6 months ago

Gimp: gimp integer overflow

A flaw was found in GIMP. An integer overflow vulnerability exists in the GIMP "Despeckle" plug-in. The issue occurs due to unchecked multiplication of image dimensions, such as width, height, and bytes-per-pixel (img_bpp), which can result in allocating insufficient memory and subsequently performing out-of-bounds writes. This issue could lead to heap corruption, a potential denial of service (DoS), or arbitrary code execution in certain scenarios.

References

https://access.redhat.com/security/cve/CVE-2025-6035 x_refsource_REDHAT vdb-entry
RHBZ#2372515 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6035 x_refsource_REDHAT vdb-entry
RHBZ#2372515 issue-tracking x_refsource_REDHAT
RHBZ#2372515 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6035 x_refsource_REDHAT vdb-entry
https://access.redhat.com/security/cve/CVE-2025-6035 x_refsource_REDHAT vdb-entry
RHBZ#2372515 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6035 x_refsource_REDHAT vdb-entry
RHBZ#2372515 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6035 x_refsource_REDHAT vdb-entry
RHBZ#2372515 issue-tracking x_refsource_REDHAT
https://lists.debian.org/debian-lts-announce/2025/10/msg00022.html
RHBZ#2372515 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6035 x_refsource_REDHAT vdb-entry
https://lists.debian.org/debian-lts-announce/2025/10/msg00022.html
https://access.redhat.com/security/cve/CVE-2025-6035 x_refsource_REDHAT vdb-entry
RHBZ#2372515 issue-tracking x_refsource_REDHAT
https://lists.debian.org/debian-lts-announce/2025/10/msg00022.html
https://access.redhat.com/security/cve/CVE-2025-6035 x_refsource_REDHAT vdb-entry
RHBZ#2372515 issue-tracking x_refsource_REDHAT
https://lists.debian.org/debian-lts-announce/2025/10/msg00022.html
https://access.redhat.com/security/cve/CVE-2025-6035 x_refsource_REDHAT vdb-entry
RHBZ#2372515 issue-tracking x_refsource_REDHAT
https://lists.debian.org/debian-lts-announce/2025/10/msg00022.html
https://access.redhat.com/security/cve/CVE-2025-6035 x_refsource_REDHAT vdb-entry
RHBZ#2372515 issue-tracking x_refsource_REDHAT
https://lists.debian.org/debian-lts-announce/2025/10/msg00022.html
RHBZ#2372515 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6035 x_refsource_REDHAT vdb-entry
https://lists.debian.org/debian-lts-announce/2025/10/msg00022.html

Affected products

gimp

<3.0.4

gimp:2.8/gimp

Matching in nixpkgs

pkgs.zigimports

Automatically remove unused imports and globals from Zig files

nixos-unstable -
- nixpkgs-unstable 0.1.0

pkgs.gimpPlugins.bimp

Batch Image Manipulation Plugin for GIMP

nixos-unstable -
- nixpkgs-unstable 2.6

pkgs.gimpPlugins.gimp

GNU Image Manipulation Program

nixos-unstable -
- nixpkgs-unstable 2.10.38

pkgs.gimpPlugins.gmic

GIMP plugin for the G'MIC image processing framework

nixos-unstable -
- nixpkgs-unstable 3.5.0

pkgs.gimp-with-plugins

GNU Image Manipulation Program

nixos-unstable -
- nixpkgs-unstable 2.10.38

pkgs.gimp3Plugins.gimp

GNU Image Manipulation Program

nixos-unstable -
- nixpkgs-unstable 3.0.4

pkgs.gimp3Plugins.gmic

GIMP plugin for the G'MIC image processing framework

nixos-unstable -
- nixpkgs-unstable 3.5.0

pkgs.gimp3-with-plugins

GNU Image Manipulation Program

nixos-unstable -
- nixpkgs-unstable 3.0.4

pkgs.gimpPlugins.fourier

GIMP plug-in to do the fourier transform

nixos-unstable -
- nixpkgs-unstable 0.4.3

pkgs.gimpPlugins.farbfeld

Gimp plug-in for the farbfeld image format

nixos-unstable -
- nixpkgs-unstable 2019-08-12

pkgs.gimpPlugins.lightning

None

nixos-unstable -
- nixpkgs-unstable

pkgs.gimpPlugins.lqrPlugin

None

nixos-unstable -
- nixpkgs-unstable 0.7.2

pkgs.gimpPlugins.texturize

None

nixos-unstable -
- nixpkgs-unstable 2.2+unstable=2021-12-03

pkgs.gimp3Plugins.lightning

None

nixos-unstable -
- nixpkgs-unstable

pkgs.gimpPlugins.gimplensfun

GIMP plugin to correct lens distortion using the lensfun library and database

nixos-unstable -
- nixpkgs-unstable 2018-10-21

pkgs.gimpPlugins.resynthesizer

None

nixos-unstable -
- nixpkgs-unstable 2.0.3

pkgs.gimpPlugins.waveletSharpen

None

nixos-unstable -
- nixpkgs-unstable 0.1.2

Package maintainers

@jtojnar Jan Tojnar <jtojnar@gmail.com>
@sikmir Nikolay Korotkiy <sikmir@disroot.org>
@jmbaur Jared Baur <jaredbaur@fastmail.com>

Permalink CVE-2025-6052

3.7 LOW

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): HIGH
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): LOW

created 6 months ago

Glib: integer overflow in g_string_maybe_expand() leading to potential buffer overflow in glib gstring

A flaw was found in how GLib’s GString manages memory when adding data to strings. If a string is already very large, combining it with more input can cause a hidden overflow in the size calculation. This makes the system think it has enough memory when it doesn’t. As a result, data may be written past the end of the allocated memory, leading to crashes or memory corruption.

References

https://access.redhat.com/security/cve/CVE-2025-6052 x_refsource_REDHAT vdb-entry
RHBZ#2372666 issue-tracking x_refsource_REDHAT
RHBZ#2372666 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6052 x_refsource_REDHAT vdb-entry
https://access.redhat.com/security/cve/CVE-2025-6052 x_refsource_REDHAT vdb-entry
RHBZ#2372666 issue-tracking x_refsource_REDHAT

Affected products

bootc

glib2

loupe

librsvg2

rpm-ostree

mingw-glib2

glycin-loaders

Matching in nixpkgs

pkgs.bootc

Boot and upgrade via container images

nixos-unstable -
- nixpkgs-unstable 1.6.0

pkgs.loupe

Simple image viewer application written with GTK4 and Rust

nixos-unstable -
- nixpkgs-unstable 48.1

pkgs.rpm-ostree

Hybrid image/package system. It uses OSTree as an image format, and uses RPM as a component model

nixos-unstable -
- nixpkgs-unstable 2024.8

pkgs.podman-bootc

Streamlining podman+bootc interactions

nixos-unstable -
- nixpkgs-unstable 0.1.2

pkgs.mlxbf-bootctl

Control BlueField boot partitions

nixos-unstable -
- nixpkgs-unstable 2025-01-16

pkgs.glycin-loaders

Glycin loaders for several formats

nixos-unstable -
- nixpkgs-unstable 1.2.3

pkgs.systemd-bootchart

Boot performance graphing tool from systemd

nixos-unstable -
- nixpkgs-unstable 235

pkgs.rubyPackages.glib2

None

nixos-unstable -
- nixpkgs-unstable glib2-4.3.3

pkgs.rubyPackages_3_1.glib2

None

nixos-unstable -
- nixpkgs-unstable glib2-4.3.3

pkgs.rubyPackages_3_2.glib2

None

nixos-unstable -
- nixpkgs-unstable glib2-4.3.3

pkgs.rubyPackages_3_3.glib2

None

nixos-unstable -
- nixpkgs-unstable glib2-4.3.3

pkgs.rubyPackages_3_4.glib2

None

nixos-unstable -
- nixpkgs-unstable glib2-4.3.3

Package maintainers

@Thesola10 Karim Vergnes <me@thesola.io>
@dasj19 Daniel Șerbănescu <daniel@serbanescu.dk>
@hedning Tor Hedin Brønner <torhedinbronner@gmail.com>
@jtojnar Jan Tojnar <jtojnar@gmail.com>
@bobby285271 Bobby Rong <rjl931189261@126.com>
@06kellyjac Jack <hello+nixpkgs@j-k.io>
@nikstur nikstur <nikstur@outlook.com>
@thillux Markus Theil <theil.markus@gmail.com>
@evan-goode Evan Goode <mail@evangoo.de>
@brianmcgillion Brian McGillion <bmg.avoin@gmail.com>

Permalink CVE-2025-6021

7.5 HIGH

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): HIGH

created 6 months ago

Libxml2: integer overflow in xmlbuildqname() leads to stack buffer overflow in libxml2

A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input.

References

https://access.redhat.com/security/cve/CVE-2025-6021 x_refsource_REDHAT vdb-entry
RHBZ#2372406 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6021 x_refsource_REDHAT vdb-entry
RHBZ#2372406 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6021 x_refsource_REDHAT vdb-entry
RHBZ#2372406 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6021 x_refsource_REDHAT vdb-entry
RHBZ#2372406 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6021 x_refsource_REDHAT vdb-entry
RHBZ#2372406 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6021 x_refsource_REDHAT vdb-entry
RHBZ#2372406 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6021 x_refsource_REDHAT vdb-entry
RHBZ#2372406 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13325 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:13336 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6021 x_refsource_REDHAT vdb-entry
RHBZ#2372406 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13289 vendor-advisory x_refsource_REDHAT
RHSA-2025:13325 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:13336 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6021 x_refsource_REDHAT vdb-entry
RHBZ#2372406 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13289 vendor-advisory x_refsource_REDHAT
RHSA-2025:13325 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:13336 vendor-advisory x_refsource_REDHAT
RHSA-2025:14059 vendor-advisory x_refsource_REDHAT
RHSA-2025:14396 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6021 x_refsource_REDHAT vdb-entry
RHBZ#2372406 issue-tracking x_refsource_REDHAT
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13289 vendor-advisory x_refsource_REDHAT
RHSA-2025:13325 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:13336 vendor-advisory x_refsource_REDHAT
RHSA-2025:14059 vendor-advisory x_refsource_REDHAT
RHSA-2025:14396 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6021 x_refsource_REDHAT vdb-entry
RHBZ#2372406 issue-tracking x_refsource_REDHAT
https://gitlab.gnome.org/GNOME/libxml2/-/issues/926 issue-tracking exploit
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13289 vendor-advisory x_refsource_REDHAT
RHSA-2025:13325 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:13336 vendor-advisory x_refsource_REDHAT
RHSA-2025:14059 vendor-advisory x_refsource_REDHAT
RHSA-2025:14396 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6021 x_refsource_REDHAT vdb-entry
RHBZ#2372406 issue-tracking x_refsource_REDHAT
https://gitlab.gnome.org/GNOME/libxml2/-/issues/926 issue-tracking exploit
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13289 vendor-advisory x_refsource_REDHAT
RHSA-2025:13325 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:13336 vendor-advisory x_refsource_REDHAT
RHSA-2025:14059 vendor-advisory x_refsource_REDHAT
RHSA-2025:14396 vendor-advisory x_refsource_REDHAT
RHSA-2025:15308 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6021 x_refsource_REDHAT vdb-entry
RHBZ#2372406 issue-tracking x_refsource_REDHAT
https://gitlab.gnome.org/GNOME/libxml2/-/issues/926 issue-tracking exploit
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13289 vendor-advisory x_refsource_REDHAT
RHSA-2025:13325 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:13336 vendor-advisory x_refsource_REDHAT
RHSA-2025:14059 vendor-advisory x_refsource_REDHAT
RHSA-2025:14396 vendor-advisory x_refsource_REDHAT
RHSA-2025:15308 vendor-advisory x_refsource_REDHAT
RHSA-2025:15672 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6021 x_refsource_REDHAT vdb-entry
RHBZ#2372406 issue-tracking x_refsource_REDHAT
https://gitlab.gnome.org/GNOME/libxml2/-/issues/926 issue-tracking exploit
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13289 vendor-advisory x_refsource_REDHAT
RHSA-2025:13325 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:13336 vendor-advisory x_refsource_REDHAT
RHSA-2025:14059 vendor-advisory x_refsource_REDHAT
RHSA-2025:14396 vendor-advisory x_refsource_REDHAT
RHSA-2025:15308 vendor-advisory x_refsource_REDHAT
RHSA-2025:15672 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6021 x_refsource_REDHAT vdb-entry
RHBZ#2372406 issue-tracking x_refsource_REDHAT
https://gitlab.gnome.org/GNOME/libxml2/-/issues/926 issue-tracking exploit
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13289 vendor-advisory x_refsource_REDHAT
RHSA-2025:13325 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:13336 vendor-advisory x_refsource_REDHAT
RHSA-2025:14059 vendor-advisory x_refsource_REDHAT
RHSA-2025:14396 vendor-advisory x_refsource_REDHAT
RHSA-2025:15308 vendor-advisory x_refsource_REDHAT
RHSA-2025:15672 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6021 x_refsource_REDHAT vdb-entry
RHBZ#2372406 issue-tracking x_refsource_REDHAT
https://gitlab.gnome.org/GNOME/libxml2/-/issues/926 issue-tracking exploit
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13289 vendor-advisory x_refsource_REDHAT
RHSA-2025:13325 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:13336 vendor-advisory x_refsource_REDHAT
RHSA-2025:14059 vendor-advisory x_refsource_REDHAT
RHSA-2025:14396 vendor-advisory x_refsource_REDHAT
RHSA-2025:15308 vendor-advisory x_refsource_REDHAT
RHSA-2025:15672 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6021 x_refsource_REDHAT vdb-entry
RHBZ#2372406 issue-tracking x_refsource_REDHAT
https://gitlab.gnome.org/GNOME/libxml2/-/issues/926 issue-tracking exploit
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13289 vendor-advisory x_refsource_REDHAT
RHSA-2025:13325 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:13336 vendor-advisory x_refsource_REDHAT
RHSA-2025:14059 vendor-advisory x_refsource_REDHAT
RHSA-2025:14396 vendor-advisory x_refsource_REDHAT
RHSA-2025:15308 vendor-advisory x_refsource_REDHAT
RHSA-2025:15672 vendor-advisory x_refsource_REDHAT
RHSA-2025:19020 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6021 x_refsource_REDHAT vdb-entry
RHBZ#2372406 issue-tracking x_refsource_REDHAT
https://gitlab.gnome.org/GNOME/libxml2/-/issues/926 issue-tracking exploit
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13289 vendor-advisory x_refsource_REDHAT
RHSA-2025:13325 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:13336 vendor-advisory x_refsource_REDHAT
RHSA-2025:14059 vendor-advisory x_refsource_REDHAT
RHSA-2025:14396 vendor-advisory x_refsource_REDHAT
RHSA-2025:15308 vendor-advisory x_refsource_REDHAT
RHSA-2025:15672 vendor-advisory x_refsource_REDHAT
RHSA-2025:19020 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6021 x_refsource_REDHAT vdb-entry
RHBZ#2372406 issue-tracking x_refsource_REDHAT
https://gitlab.gnome.org/GNOME/libxml2/-/issues/926 issue-tracking exploit
https://lists.debian.org/debian-lts-announce/2025/07/msg00014.html
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13289 vendor-advisory x_refsource_REDHAT
RHSA-2025:13325 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:13336 vendor-advisory x_refsource_REDHAT
RHSA-2025:14059 vendor-advisory x_refsource_REDHAT
RHSA-2025:14396 vendor-advisory x_refsource_REDHAT
RHSA-2025:15308 vendor-advisory x_refsource_REDHAT
RHSA-2025:15672 vendor-advisory x_refsource_REDHAT
RHSA-2025:19020 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6021 x_refsource_REDHAT vdb-entry
RHBZ#2372406 issue-tracking x_refsource_REDHAT
https://gitlab.gnome.org/GNOME/libxml2/-/issues/926 issue-tracking exploit
https://lists.debian.org/debian-lts-announce/2025/07/msg00014.html
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13289 vendor-advisory x_refsource_REDHAT
RHSA-2025:13325 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:13336 vendor-advisory x_refsource_REDHAT
RHSA-2025:14059 vendor-advisory x_refsource_REDHAT
RHSA-2025:14396 vendor-advisory x_refsource_REDHAT
RHSA-2025:15308 vendor-advisory x_refsource_REDHAT
RHSA-2025:15672 vendor-advisory x_refsource_REDHAT
RHSA-2025:19020 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6021 x_refsource_REDHAT vdb-entry
RHBZ#2372406 issue-tracking x_refsource_REDHAT
https://gitlab.gnome.org/GNOME/libxml2/-/issues/926 issue-tracking exploit
https://lists.debian.org/debian-lts-announce/2025/07/msg00014.html
RHSA-2025:10630 vendor-advisory x_refsource_REDHAT
RHSA-2025:10698 vendor-advisory x_refsource_REDHAT
RHSA-2025:10699 vendor-advisory x_refsource_REDHAT
RHSA-2025:11580 vendor-advisory x_refsource_REDHAT
RHSA-2025:11673 vendor-advisory x_refsource_REDHAT
RHSA-2025:12098 vendor-advisory x_refsource_REDHAT
RHSA-2025:12099 vendor-advisory x_refsource_REDHAT
RHSA-2025:12199 vendor-advisory x_refsource_REDHAT
RHSA-2025:12237 vendor-advisory x_refsource_REDHAT
RHSA-2025:12239 vendor-advisory x_refsource_REDHAT
RHSA-2025:12240 vendor-advisory x_refsource_REDHAT
RHSA-2025:12241 vendor-advisory x_refsource_REDHAT
RHSA-2025:13267 vendor-advisory x_refsource_REDHAT
RHSA-2025:13289 vendor-advisory x_refsource_REDHAT
RHSA-2025:13325 vendor-advisory x_refsource_REDHAT
RHSA-2025:13335 vendor-advisory x_refsource_REDHAT
RHSA-2025:13336 vendor-advisory x_refsource_REDHAT
RHSA-2025:14059 vendor-advisory x_refsource_REDHAT
RHSA-2025:14396 vendor-advisory x_refsource_REDHAT
RHSA-2025:15308 vendor-advisory x_refsource_REDHAT
RHSA-2025:15672 vendor-advisory x_refsource_REDHAT
RHSA-2025:19020 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-6021 x_refsource_REDHAT vdb-entry
RHBZ#2372406 issue-tracking x_refsource_REDHAT
https://gitlab.gnome.org/GNOME/libxml2/-/issues/926 issue-tracking exploit
https://lists.debian.org/debian-lts-announce/2025/07/msg00014.html

Affected products

rhcos

libxml2

<2.14.4
*

discovery/discovery-server-rhel9

Red Hat JBoss Core Services 2.4.62.SP2

insights-proxy/insights-proxy-container-rhel9

registry.redhat.io/discovery/discovery-server-rhel9

registry.redhat.io/insights-proxy/insights-proxy-container-rhel9

Matching in nixpkgs

pkgs.libxml2

XML parsing library for C

nixos-unstable -
- nixpkgs-unstable 2.14.5

pkgs.libxml2_13

XML parsing library for C

nixos-unstable -
- nixpkgs-unstable 2.13.8

pkgs.libxml2Python

None

nixos-unstable -
- nixpkgs-unstable 2.14.5

pkgs.sbclPackages.cl-libxml2

None

nixos-unstable -
- nixpkgs-unstable libxml2-20130615-git

pkgs.python312Packages.libxml2

XML parsing library for C

nixos-unstable -
- nixpkgs-unstable 2.14.5

pkgs.python313Packages.libxml2

XML parsing library for C

nixos-unstable -
- nixpkgs-unstable 2.14.5

pkgs.tests.pkg-config.defaultPkgConfigPackages.%22libxml-2.0%22

Test whether libxml2-2.14.5 exposes pkg-config modules libxml-2.0

nixos-unstable -
- nixpkgs-unstable libxml2

Package maintainers

@jtojnar Jan Tojnar <jtojnar@gmail.com>
@gepbird Gutyina Gergő <gutyina.gergo.2@gmail.com>
@7c6f434c Michael Raskin <7c6f434c@mail.ru>
@Uthar Kasper Gałkowski <galkowskikasper@gmail.com>
@nagy Daniel Nagy <danielnagy@posteo.de>
@hraban Hraban Luyat <hraban@0brg.net>
@lukego Luke Gorrie <luke@snabb.co>

Permalink CVE-2025-40914

9.8 CRITICAL

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): HIGH
Availability impact (A): HIGH

created 6 months ago

Perl CryptX before version 0.087 contains a dependency that may be susceptible to an integer overflow

Perl CryptX before version 0.087 contains a dependency that may be susceptible to an integer overflow. CryptX embeds a version of the libtommath library that is susceptible to an integer overflow associated with CVE-2023-36328.

References

Affected products

CryptX

=<0.086

Matching in nixpkgs

pkgs.perlPackages.CryptX

Cryptographic toolkit

nixos-unstable -
- nixpkgs-unstable 0.087

pkgs.perl538Packages.CryptX

Cryptographic toolkit

nixos-unstable -
- nixpkgs-unstable 0.087

pkgs.perl540Packages.CryptX

Cryptographic toolkit

nixos-unstable -
- nixpkgs-unstable 0.087

Permalink CVE-2025-40912

9.8 CRITICAL

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): HIGH
Availability impact (A): HIGH

created 6 months ago

CryptX for Perl before version 0.065 contains a dependency that may be susceptible to malformed unicode

CryptX for Perl before version 0.065 contains a dependency that may be susceptible to malformed unicode. CryptX embeds the tomcrypt library. The versions of that library in CryptX before 0.065 may be susceptible to CVE-2019-17362.

References

https://github.com/libtom/libtomcrypt/issues/507

Affected products

CryptX

<0.065

Matching in nixpkgs

pkgs.perlPackages.CryptX

Cryptographic toolkit

nixos-unstable -
- nixpkgs-unstable 0.087

pkgs.perl538Packages.CryptX

Cryptographic toolkit

nixos-unstable -
- nixpkgs-unstable 0.087

pkgs.perl540Packages.CryptX

Cryptographic toolkit

nixos-unstable -
- nixpkgs-unstable 0.087

Permalink CVE-2025-47712

4.3 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): LOW
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): LOW

created 6 months ago

Nbd: nbdkit: integer overflow triggers an assertion resulting in denial of service

A flaw exists in the nbdkit "blocksize" filter that can be triggered by a specific type of client request. When a client requests block status information for a very large data range, exceeding a certain limit, it causes an internal error in the nbdkit, leading to a denial of service.

References

https://access.redhat.com/security/cve/CVE-2025-47712 x_refsource_REDHAT vdb-entry
RHBZ#2365724 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-47712 x_refsource_REDHAT vdb-entry
RHBZ#2365724 issue-tracking x_refsource_REDHAT
https://lists.libguestfs.org/archives/list/guestfs@lists.libguestfs.org/thread/…
RHBZ#2365724 issue-tracking x_refsource_REDHAT
https://lists.libguestfs.org/archives/list/guestfs@lists.libguestfs.org/thread/…
https://access.redhat.com/security/cve/CVE-2025-47712 x_refsource_REDHAT vdb-entry
https://access.redhat.com/security/cve/CVE-2025-47712 x_refsource_REDHAT vdb-entry
RHBZ#2365724 issue-tracking x_refsource_REDHAT
https://lists.libguestfs.org/archives/list/guestfs@lists.libguestfs.org/thread/…
https://access.redhat.com/security/cve/CVE-2025-47712 x_refsource_REDHAT vdb-entry
RHBZ#2365724 issue-tracking x_refsource_REDHAT
https://lists.libguestfs.org/archives/list/guestfs@lists.libguestfs.org/thread/…
https://access.redhat.com/security/cve/CVE-2025-47712 x_refsource_REDHAT vdb-entry
RHBZ#2365724 issue-tracking x_refsource_REDHAT
https://lists.libguestfs.org/archives/list/guestfs@lists.libguestfs.org/thread/…
https://access.redhat.com/security/cve/CVE-2025-47712 x_refsource_REDHAT vdb-entry
RHBZ#2365724 issue-tracking x_refsource_REDHAT
https://lists.libguestfs.org/archives/list/guestfs@lists.libguestfs.org/thread/…
https://access.redhat.com/security/cve/CVE-2025-47712 x_refsource_REDHAT vdb-entry
RHBZ#2365724 issue-tracking x_refsource_REDHAT
https://lists.libguestfs.org/archives/list/guestfs@lists.libguestfs.org/thread/…

Affected products

nbdkit

<1.40.6
<1.42.3
<1.38.6

virt:av/nbdkit

virt:8.2/nbdkit

virt:rhel/nbdkit

Matching in nixpkgs

pkgs.nbdkit

NBD server with stable plugin ABI and permissive license

nixos-unstable -
- nixpkgs-unstable 1.44.1

Package maintainers

@lukts30 lukts30 <llukas21307@gmail.com>

Permalink CVE-2025-5917

2.8 LOW

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): LOW
Privileges required (PR): LOW
User interaction (UI): REQUIRED
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): LOW

created 6 months ago

Libarchive: off by one error in build_ustar_entry_name() at archive_write_set_format_pax.c

A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-one' miscalculation when handling prefixes and suffixes for file names. This can lead to a 1-byte write overflow. While seemingly small, such an overflow can corrupt adjacent memory, leading to unpredictable program behavior, crashes, or in specific circumstances, could be leveraged as a building block for more sophisticated exploitation.

References

RHBZ#2370874 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2588
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://access.redhat.com/security/cve/CVE-2025-5917 x_refsource_REDHAT vdb-entry
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://access.redhat.com/security/cve/CVE-2025-5917 x_refsource_REDHAT vdb-entry
RHBZ#2370874 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2588
https://github.com/libarchive/libarchive/pull/2588
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://access.redhat.com/security/cve/CVE-2025-5917 x_refsource_REDHAT vdb-entry
RHBZ#2370874 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5917 x_refsource_REDHAT vdb-entry
RHBZ#2370874 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2588
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://access.redhat.com/security/cve/CVE-2025-5917 x_refsource_REDHAT vdb-entry
RHBZ#2370874 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2588
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://access.redhat.com/security/cve/CVE-2025-5917 x_refsource_REDHAT vdb-entry
RHBZ#2370874 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2588
https://github.com/libarchive/libarchive/releases/tag/v3.8.0

Affected products

rhcos

libarchive

<3.8.0

Matching in nixpkgs

pkgs.libarchive

Multi-format archive and compression library

nixos-unstable -
- nixpkgs-unstable 3.8.1

pkgs.libarchive-qt

Qt based archiving solution with libarchive backend

nixos-unstable -
- nixpkgs-unstable 2.0.8

pkgs.haskellPackages.libarchive

Haskell interface to libarchive

nixos-unstable -
- nixpkgs-unstable 3.0.4.2

pkgs.kodiPackages.vfs-libarchive

LibArchive Virtual Filesystem add-on for Kodi

nixos-unstable -
- nixpkgs-unstable 20.1.0

pkgs.python312Packages.libarchive-c

Python interface to libarchive

nixos-unstable -
- nixpkgs-unstable 5.3

pkgs.python313Packages.libarchive-c

Python interface to libarchive

nixos-unstable -
- nixpkgs-unstable 5.3

pkgs.haskellPackages.archive-libarchive

Common interface using libarchive

nixos-unstable -
- nixpkgs-unstable 1.0.0.1

pkgs.haskellPackages.libarchive-conduit

Read many archive formats with libarchive and conduit

nixos-unstable -
- nixpkgs-unstable 0.1.0.0

pkgs.python312Packages.extractcode-libarchive

ScanCode Toolkit plugin to provide pre-built binary libraries and utilities and their locations

nixos-unstable -
- nixpkgs-unstable 21.5.31

pkgs.python313Packages.extractcode-libarchive

ScanCode Toolkit plugin to provide pre-built binary libraries and utilities and their locations

nixos-unstable -
- nixpkgs-unstable 21.5.31

Package maintainers

@peterhoeg Peter Hoeg <peter@hoeg.com>
@dschrempf Dominik Schrempf <dominik.schrempf@gmail.com>
@minijackson Rémi Nicole <minijackson@riseup.net>
@cpages Carles Pagès <page@ruiec.cat>
@aanderse Aaron Andersen <aaron@fosslib.net>
@edwtjo Edward Tjörnhammar <ed@cflags.cc>
@nvmd Sergey Kazenyuk <kazenyuk@pm.me>
@jcumming Jack Cummings <jack@mudshark.org>

Permalink CVE-2025-5914

3.9 LOW

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): LOW
Privileges required (PR): LOW
User interaction (UI): REQUIRED
Scope (S): UNCHANGED
Confidentiality impact (C): LOW
Integrity impact (I): NONE
Availability impact (A): LOW

created 6 months ago

Libarchive: double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c

A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service condition.

References

https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://github.com/libarchive/libarchive/pull/2598 exploit
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/pull/2598 exploit
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598 exploit
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
RHSA-2025:15024 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
RHSA-2025:15024 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
RHSA-2025:15024 vendor-advisory x_refsource_REDHAT
RHSA-2025:15709 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
RHSA-2025:15024 vendor-advisory x_refsource_REDHAT
RHSA-2025:15709 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
RHSA-2025:15024 vendor-advisory x_refsource_REDHAT
RHSA-2025:15709 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:15024 vendor-advisory x_refsource_REDHAT
RHSA-2025:15709 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:16524 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
RHSA-2025:15024 vendor-advisory x_refsource_REDHAT
RHSA-2025:15709 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:16524 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
RHSA-2025:15024 vendor-advisory x_refsource_REDHAT
RHSA-2025:15709 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:16524 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
RHSA-2025:15024 vendor-advisory x_refsource_REDHAT
RHSA-2025:15709 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:16524 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
RHSA-2025:15024 vendor-advisory x_refsource_REDHAT
RHSA-2025:15709 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:16524 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
RHSA-2025:15024 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15709 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:16524 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
RHSA-2025:15024 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15709 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:16524 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
RHSA-2025:15024 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15709 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:16524 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
RHSA-2025:19046 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
RHSA-2025:15024 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15709 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:16524 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
RHSA-2025:19041 vendor-advisory x_refsource_REDHAT
RHSA-2025:19046 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
RHSA-2025:15024 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15709 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:16524 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
RHSA-2025:19041 vendor-advisory x_refsource_REDHAT
RHSA-2025:19046 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
RHSA-2025:15024 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15709 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:16524 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
RHSA-2025:19041 vendor-advisory x_refsource_REDHAT
RHSA-2025:19046 vendor-advisory x_refsource_REDHAT
RHSA-2025:21885 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
RHSA-2025:15024 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15709 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:16524 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
RHSA-2025:19041 vendor-advisory x_refsource_REDHAT
RHSA-2025:19046 vendor-advisory x_refsource_REDHAT
RHSA-2025:21885 vendor-advisory x_refsource_REDHAT
RHSA-2025:21913 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
RHSA-2025:15024 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15709 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:16524 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
RHSA-2025:19041 vendor-advisory x_refsource_REDHAT
RHSA-2025:19046 vendor-advisory x_refsource_REDHAT
RHSA-2025:21885 vendor-advisory x_refsource_REDHAT
RHSA-2025:21913 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:16524 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
RHSA-2025:19041 vendor-advisory x_refsource_REDHAT
RHSA-2025:19046 vendor-advisory x_refsource_REDHAT
RHSA-2025:21885 vendor-advisory x_refsource_REDHAT
RHSA-2025:21913 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
RHSA-2025:15024 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15709 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
RHSA-2025:15024 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15709 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:16524 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
RHSA-2025:19041 vendor-advisory x_refsource_REDHAT
RHSA-2025:19046 vendor-advisory x_refsource_REDHAT
RHSA-2025:21885 vendor-advisory x_refsource_REDHAT
RHSA-2025:21913 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:15024 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15709 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:16524 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
RHSA-2025:19041 vendor-advisory x_refsource_REDHAT
RHSA-2025:19046 vendor-advisory x_refsource_REDHAT
RHSA-2025:21885 vendor-advisory x_refsource_REDHAT
RHSA-2025:21913 vendor-advisory x_refsource_REDHAT
RHSA-2026:0326 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
RHSA-2025:15024 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15709 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:16524 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
RHSA-2025:19041 vendor-advisory x_refsource_REDHAT
RHSA-2025:19046 vendor-advisory x_refsource_REDHAT
RHSA-2025:21885 vendor-advisory x_refsource_REDHAT
RHSA-2025:21913 vendor-advisory x_refsource_REDHAT
RHSA-2026:0326 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
RHSA-2025:15024 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15709 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:16524 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
RHSA-2025:19041 vendor-advisory x_refsource_REDHAT
RHSA-2025:19046 vendor-advisory x_refsource_REDHAT
RHSA-2025:21885 vendor-advisory x_refsource_REDHAT
RHSA-2025:21913 vendor-advisory x_refsource_REDHAT
RHSA-2026:0326 vendor-advisory x_refsource_REDHAT
RHSA-2026:0934 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://github.com/libarchive/libarchive/pull/2598 exploit
RHSA-2025:14130 vendor-advisory x_refsource_REDHAT
RHSA-2025:14135 vendor-advisory x_refsource_REDHAT
RHSA-2025:14137 vendor-advisory x_refsource_REDHAT
RHSA-2025:14141 vendor-advisory x_refsource_REDHAT
RHSA-2025:14142 vendor-advisory x_refsource_REDHAT
RHSA-2025:14525 vendor-advisory x_refsource_REDHAT
RHSA-2025:14528 vendor-advisory x_refsource_REDHAT
RHSA-2025:14594 vendor-advisory x_refsource_REDHAT
RHSA-2025:14644 vendor-advisory x_refsource_REDHAT
RHSA-2025:14808 vendor-advisory x_refsource_REDHAT
RHSA-2025:14810 vendor-advisory x_refsource_REDHAT
RHSA-2025:14828 vendor-advisory x_refsource_REDHAT
RHSA-2025:15024 vendor-advisory x_refsource_REDHAT
RHSA-2025:15397 vendor-advisory x_refsource_REDHAT
RHSA-2025:15709 vendor-advisory x_refsource_REDHAT
RHSA-2025:15827 vendor-advisory x_refsource_REDHAT
RHSA-2025:15828 vendor-advisory x_refsource_REDHAT
RHSA-2025:16524 vendor-advisory x_refsource_REDHAT
RHSA-2025:18217 vendor-advisory x_refsource_REDHAT
RHSA-2025:18218 vendor-advisory x_refsource_REDHAT
RHSA-2025:18219 vendor-advisory x_refsource_REDHAT
RHSA-2025:19041 vendor-advisory x_refsource_REDHAT
RHSA-2025:19046 vendor-advisory x_refsource_REDHAT
RHSA-2025:21885 vendor-advisory x_refsource_REDHAT
RHSA-2025:21913 vendor-advisory x_refsource_REDHAT
RHSA-2026:0326 vendor-advisory x_refsource_REDHAT
RHSA-2026:0934 vendor-advisory x_refsource_REDHAT
RHSA-2026:1541 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5914 x_refsource_REDHAT vdb-entry
RHBZ#2370861 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2598
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://github.com/libarchive/libarchive/pull/2598 exploit

Affected products

rhcos

libarchive

<3.8.0
*

rhosdt/jaeger-agent-rhel8

rhosdt/jaeger-query-rhel8

rhosdt/jaeger-ingester-rhel8

rhosdt/jaeger-rhel8-operator

rhosdt/jaeger-collector-rhel8

rhosdt/jaeger-operator-bundle

rhosdt/jaeger-all-in-one-rhel8

rhosdt/jaeger-es-rollover-rhel8

discovery/discovery-server-rhel9

rhosdt/jaeger-es-index-cleaner-rhel8

web-terminal/web-terminal-tooling-rhel9

cert-manager/jetstack-cert-manager-rhel9

web-terminal/web-terminal-rhel9-operator

openshift-serverless-1/logic-rhel8-operator

openshift-serverless-1/logic-operator-bundle

registry.redhat.io/rhosdt/jaeger-agent-rhel8

registry.redhat.io/rhosdt/jaeger-query-rhel8

insights-proxy/insights-proxy-container-rhel9

compliance/openshift-compliance-openscap-rhel8

compliance/openshift-compliance-rhel8-operator

openshift-serverless-1/logic-swf-builder-rhel8

openshift-serverless-1/logic-swf-devmode-rhel8

registry.redhat.io/rhosdt/jaeger-ingester-rhel8

registry.redhat.io/rhosdt/jaeger-rhel8-operator

openshift-sandboxed-containers/osc-monitor-rhel9

registry.redhat.io/rhosdt/jaeger-collector-rhel8

registry.redhat.io/rhosdt/jaeger-operator-bundle

compliance/openshift-compliance-must-gather-rhel8

openshift-sandboxed-containers/osc-rhel9-operator

registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8

compliance/openshift-file-integrity-rhel8-operator

registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8

openshift-serverless-1/logic-db-migrator-tool-rhel8

registry.redhat.io/discovery/discovery-server-rhel9

openshift-sandboxed-containers/osc-must-gather-rhel9

openshift-serverless-1/logic-management-console-rhel8

openshift-sandboxed-containers/osc-podvm-builder-rhel9

openshift-sandboxed-containers/osc-podvm-payload-rhel9

openshift-serverless-1/logic-data-index-ephemeral-rhel8

registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8

openshift-serverless-1/logic-data-index-postgresql-rhel8

openshift-serverless-1/logic-jobs-service-ephemeral-rhel8

openshift-sandboxed-containers/osc-cloud-api-adaptor-rhel9

openshift-serverless-1/logic-jobs-service-postgresql-rhel8

openshift-serverless-1/logic-kn-workflow-cli-artifacts-rhel8

registry.redhat.io/insights-proxy/insights-proxy-container-rhel9

openshift-sandboxed-containers/osc-cloud-api-adaptor-webhook-rhel9

registry.redhat.io/openshift-sandboxed-containers/osc-monitor-rhel9

registry.redhat.io/openshift-sandboxed-containers/osc-rhel9-operator

registry.redhat.io/openshift-sandboxed-containers/osc-must-gather-rhel9

registry.redhat.io/openshift-sandboxed-containers/osc-podvm-builder-rhel9

registry.redhat.io/openshift-sandboxed-containers/osc-podvm-payload-rhel9

registry.redhat.io/openshift-sandboxed-containers/osc-cloud-api-adaptor-rhel9

registry.redhat.io/openshift-sandboxed-containers/osc-cloud-api-adaptor-webhook-rhel9

Matching in nixpkgs

pkgs.libarchive

Multi-format archive and compression library

nixos-unstable -
- nixpkgs-unstable 3.8.1

pkgs.libarchive-qt

Qt based archiving solution with libarchive backend

nixos-unstable -
- nixpkgs-unstable 2.0.8

pkgs.haskellPackages.libarchive

Haskell interface to libarchive

nixos-unstable -
- nixpkgs-unstable 3.0.4.2

pkgs.kodiPackages.vfs-libarchive

LibArchive Virtual Filesystem add-on for Kodi

nixos-unstable -
- nixpkgs-unstable 20.1.0

pkgs.python312Packages.libarchive-c

Python interface to libarchive

nixos-unstable -
- nixpkgs-unstable 5.3

pkgs.python313Packages.libarchive-c

Python interface to libarchive

nixos-unstable -
- nixpkgs-unstable 5.3

pkgs.haskellPackages.archive-libarchive

Common interface using libarchive

nixos-unstable -
- nixpkgs-unstable 1.0.0.1

pkgs.haskellPackages.libarchive-conduit

Read many archive formats with libarchive and conduit

nixos-unstable -
- nixpkgs-unstable 0.1.0.0

pkgs.python312Packages.extractcode-libarchive

ScanCode Toolkit plugin to provide pre-built binary libraries and utilities and their locations

nixos-unstable -
- nixpkgs-unstable 21.5.31

pkgs.python313Packages.extractcode-libarchive

ScanCode Toolkit plugin to provide pre-built binary libraries and utilities and their locations

nixos-unstable -
- nixpkgs-unstable 21.5.31

Package maintainers

@peterhoeg Peter Hoeg <peter@hoeg.com>
@dschrempf Dominik Schrempf <dominik.schrempf@gmail.com>
@minijackson Rémi Nicole <minijackson@riseup.net>
@cpages Carles Pagès <page@ruiec.cat>
@aanderse Aaron Andersen <aaron@fosslib.net>
@edwtjo Edward Tjörnhammar <ed@cflags.cc>
@nvmd Sergey Kazenyuk <kazenyuk@pm.me>
@jcumming Jack Cummings <jack@mudshark.org>

Permalink CVE-2025-31061

7.1 HIGH

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): REQUIRED
Scope (S): CHANGED
Confidentiality impact (C): LOW
Integrity impact (I): LOW
Availability impact (A): LOW

created 6 months ago

WordPress Wishlist plugin <= 2.1.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in redqteam Wishlist allows Reflected XSS. This issue affects Wishlist: from n/a through 2.1.0.

References

Affected products

wishlist

=<2.1.0

Matching in nixpkgs

pkgs.wishlist

Single entrypoint for multiple SSH endpoints

nixos-unstable -
- nixpkgs-unstable 0.15.2

Package maintainers

@caarlos0 Carlos A Becker <carlos@becker.software>
@penguwin Nicolas Martin <penguwin@penguwin.eu>