CVE-2025-6021

{"id": "CVE-2025-6021", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "secalert@redhat.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2025-06-12T13:15:25.590", "references": [{"url": "https://access.redhat.com/errata/RHSA-2025:10630", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:10698", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:10699", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:11580", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:12098", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:12099", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:12199", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:12237", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:12239", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:12240", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:12241", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:13267", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:13289", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:13325", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:13335", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:13336", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:14059", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:14396", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/security/cve/CVE-2025-6021", "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372406", "source": "secalert@redhat.com"}, {"url": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/926", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "secalert@redhat.com", "description": [{"lang": "en", "value": "CWE-121"}]}], "descriptions": [{"lang": "en", "value": "A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input."}, {"lang": "es", "value": "Se detect\u00f3 una falla en la funci\u00f3n xmlBuildQName de libxml2. Los desbordamientos de enteros en los c\u00e1lculos del tama\u00f1o del b\u00fafer pueden provocar un desbordamiento del b\u00fafer en la pila. Este problema puede provocar corrupci\u00f3n de memoria o una denegaci\u00f3n de servicio al procesar entradas manipuladas."}], "lastModified": "2025-09-03T15:15:48.473", "sourceIdentifier": "secalert@redhat.com"}