CVE-2025-0395 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

When the assert() function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message string and size…
Medium CVSS: 6.2

CVE-2025-0395

When the assert() function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message string and size information, which may lead to a buffer overflow if the message string size aligns to page size.
Vendor
-
Product
-
CWE
CWE-131
Yayın Tarihi
2025-01-22 13:15:20
Güncelleme
2026-02-04 21:15:56
Source Identifier
3ff69d7a-14f2-4f67-a097-88dee7810d18
KEV Date Added
-

Kategoriler

CWE-131 MEDIUM 2025

Referanslar

https://sourceware.org/bugzilla/show_bug.cgi?id=32582 https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2025-0001 https://sourceware.org/pipermail/libc-announce/2025/000044.html https://www.openwall.com/lists/oss-security/2025/01/22/4 http://www.openwall.com/lists/oss-security/2025/01/22/4 http://www.openwall.com/lists/oss-security/2025/01/23/2 http://www.openwall.com/lists/oss-security/2025/04/13/1 http://www.openwall.com/lists/oss-security/2025/04/24/7 https://lists.debian.org/debian-lts-announce/2025/04/msg00039.html https://security.netapp.com/advisory/ntap-20250228-0006/