{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-0395", "assignerOrgId": "3ff69d7a-14f2-4f67-a097-88dee7810d18", "state": "PUBLISHED", "assignerShortName": "glibc", "dateReserved": "2025-01-11T15:00:14.787Z", "datePublished": "2025-01-22T13:11:30.406Z", "dateUpdated": "2026-02-04T20:45:35.724Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "glibc", "vendor": "The GNU C Library", "versions": [{"lessThanOrEqual": "2.40", "status": "affected", "version": "2.13", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "finder", "value": "Qualys Security Advisory"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "When the assert() function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message string and size information, which may lead to a buffer overflow if the message string size aligns to page size.<br>"}], "value": "When the assert() function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message string and size information, which may lead to a buffer overflow if the message string size aligns to page size."}], "impacts": [{"capecId": "CAPEC-100", "descriptions": [{"lang": "en", "value": "CAPEC-100 Overflow Buffers"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-131", "description": "CWE-131 Incorrect Calculation of Buffer Size", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "3ff69d7a-14f2-4f67-a097-88dee7810d18", "shortName": "glibc", "dateUpdated": "2025-01-22T15:29:51.366Z"}, "references": [{"url": "https://www.openwall.com/lists/oss-security/2025/01/22/4"}, {"url": "https://sourceware.org/bugzilla/show_bug.cgi?id=32582"}, {"url": "https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2025-0001"}, {"url": "https://sourceware.org/pipermail/libc-announce/2025/000044.html"}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"title": "CVE Program Container", "references": [{"url": "http://www.openwall.com/lists/oss-security/2025/01/22/4"}, {"url": "http://www.openwall.com/lists/oss-security/2025/01/23/2"}, {"url": "https://security.netapp.com/advisory/ntap-20250228-0006/"}, {"url": "http://www.openwall.com/lists/oss-security/2025/04/13/1"}, {"url": "http://www.openwall.com/lists/oss-security/2025/04/24/7"}, {"url": "https://lists.debian.org/debian-lts-announce/2025/04/msg00039.html"}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2025-04-30T05:03:13.011Z"}}, {"metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.2, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2026-02-04T20:45:32.215090Z", "id": "CVE-2025-0395", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-04T20:45:35.724Z"}}]}}

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-0395", "assignerOrgId": "3ff69d7a-14f2-4f67-a097-88dee7810d18", "state": "PUBLISHED", "assignerShortName": "glibc", "dateReserved": "2025-01-11T15:00:14.787Z", "datePublished": "2025-01-22T13:11:30.406Z", "dateUpdated": "2026-02-04T20:45:35.724Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "glibc", "vendor": "The GNU C Library", "versions": [{"lessThanOrEqual": "2.40", "status": "affected", "version": "2.13", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "finder", "value": "Qualys Security Advisory"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "When the assert() function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message string and size information, which may lead to a buffer overflow if the message string size aligns to page size.<br>"}], "value": "When the assert() function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message string and size information, which may lead to a buffer overflow if the message string size aligns to page size."}], "impacts": [{"capecId": "CAPEC-100", "descriptions": [{"lang": "en", "value": "CAPEC-100 Overflow Buffers"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-131", "description": "CWE-131 Incorrect Calculation of Buffer Size", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "3ff69d7a-14f2-4f67-a097-88dee7810d18", "shortName": "glibc", "dateUpdated": "2025-01-22T15:29:51.366Z"}, "references": [{"url": "https://www.openwall.com/lists/oss-security/2025/01/22/4"}, {"url": "https://sourceware.org/bugzilla/show_bug.cgi?id=32582"}, {"url": "https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2025-0001"}, {"url": "https://sourceware.org/pipermail/libc-announce/2025/000044.html"}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"title": "CVE Program Container", "references": [{"url": "http://www.openwall.com/lists/oss-security/2025/01/22/4"}, {"url": "http://www.openwall.com/lists/oss-security/2025/01/23/2"}, {"url": "https://security.netapp.com/advisory/ntap-20250228-0006/"}, {"url": "http://www.openwall.com/lists/oss-security/2025/04/13/1"}, {"url": "http://www.openwall.com/lists/oss-security/2025/04/24/7"}, {"url": "https://lists.debian.org/debian-lts-announce/2025/04/msg00039.html"}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2025-04-30T05:03:13.011Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.2, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2025-0395", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-02-04T20:45:32.215090Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-01-22T14:32:08.276Z"}}]}}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "When the assert() function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message string and size information, which may lead to a buffer overflow if the message string size aligns to page size."}, {"lang": "es", "value": "Cuando la funci\u00f3n assert() en las versiones GNU C Library 2.13 a 2.40 falla, no asigna suficiente espacio para la cadena de mensaje de error de aserci\u00f3n y la informaci\u00f3n de tama\u00f1o, lo que puede provocar un desbordamiento de b\u00fafer si el tama\u00f1o de la cadena del mensaje se alinea con el tama\u00f1o de la p\u00e1gina."}], "id": "CVE-2025-0395", "lastModified": "2026-02-04T21:15:56.993", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 6.2, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 2.5, "impactScore": 3.6, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2025-01-22T13:15:20.933", "references": [{"source": "3ff69d7a-14f2-4f67-a097-88dee7810d18", "url": "https://sourceware.org/bugzilla/show_bug.cgi?id=32582"}, {"source": "3ff69d7a-14f2-4f67-a097-88dee7810d18", "url": "https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2025-0001"}, {"source": "3ff69d7a-14f2-4f67-a097-88dee7810d18", "url": "https://sourceware.org/pipermail/libc-announce/2025/000044.html"}, {"source": "3ff69d7a-14f2-4f67-a097-88dee7810d18", "url": "https://www.openwall.com/lists/oss-security/2025/01/22/4"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.openwall.com/lists/oss-security/2025/01/22/4"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.openwall.com/lists/oss-security/2025/01/23/2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.openwall.com/lists/oss-security/2025/04/13/1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.openwall.com/lists/oss-security/2025/04/24/7"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://lists.debian.org/debian-lts-announce/2025/04/msg00039.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://security.netapp.com/advisory/ntap-20250228-0006/"}], "sourceIdentifier": "3ff69d7a-14f2-4f67-a097-88dee7810d18", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-131"}], "source": "3ff69d7a-14f2-4f67-a097-88dee7810d18", "type": "Secondary"}]}

{"affected_release": [{"advisory": "RHSA-2025:3828", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "glibc-0:2.28-251.el8_10.16", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2025-04-14T00:00:00Z"}, {"advisory": "RHSA-2025:3828", "cpe": "cpe:/o:redhat:enterprise_linux:8", "package": "glibc-0:2.28-251.el8_10.16", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2025-04-14T00:00:00Z"}, {"advisory": "RHSA-2025:4244", "cpe": "cpe:/a:redhat:enterprise_linux:9", "package": "glibc-0:2.34-125.el9_5.8", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2025-04-28T00:00:00Z"}, {"advisory": "RHSA-2025:4244", "cpe": "cpe:/o:redhat:enterprise_linux:9", "package": "glibc-0:2.34-125.el9_5.8", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2025-04-28T00:00:00Z"}, {"advisory": "RHSA-2025:4242", "cpe": "cpe:/a:redhat:rhel_e4s:9.0", "package": "glibc-0:2.34-28.el9_0.8", "product_name": "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions", "release_date": "2025-04-28T00:00:00Z"}, {"advisory": "RHSA-2025:4241", "cpe": "cpe:/a:redhat:rhel_eus:9.2", "package": "glibc-0:2.34-60.el9_2.17", "product_name": "Red Hat Enterprise Linux 9.2 Extended Update Support", "release_date": "2025-04-28T00:00:00Z"}, {"advisory": "RHSA-2025:4243", "cpe": "cpe:/a:redhat:rhel_eus:9.4", "package": "glibc-0:2.34-100.el9_4.10", "product_name": "Red Hat Enterprise Linux 9.4 Extended Update Support", "release_date": "2025-04-28T00:00:00Z"}], "bugzilla": {"description": "glibc: buffer overflow in the GNU C Library's assert()", "id": "2339460", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2339460"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.5", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:H", "status": "verified"}, "cwe": "CWE-131", "details": ["When the assert() function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message string and size information, which may lead to a buffer overflow if the message string size aligns to page size.", "A flaw was found in the GNU C Library (glibc). A buffer overflow condition via the `assert()` function may be triggered due to glibc not allocating enough space for the assertion failure message string and size information. In certain conditions, a local attacker can exploit this, potentially leading to an application crash or other undefined behavior."], "name": "CVE-2025-0395", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:10", "fix_state": "Not affected", "package_name": "glibc", "product_name": "Red Hat Enterprise Linux 10"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Out of support scope", "package_name": "compat-glibc", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Out of support scope", "package_name": "glibc", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Out of support scope", "package_name": "compat-glibc", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Will not fix", "package_name": "glibc", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Fix deferred", "package_name": "rhcos", "product_name": "Red Hat OpenShift Container Platform 4"}], "public_date": "2025-01-22T13:11:30Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2025-0395\nhttps://nvd.nist.gov/vuln/detail/CVE-2025-0395\nhttps://sourceware.org/bugzilla/show_bug.cgi?id=32582"], "statement": "The bug is with glib assert() function that is typically used to identify logic errors in programs. The specific vulnerability stems in not enough being allocated to fit an arbitrary length error statement that is passed to the assert() function. The lack of any check on the string length causes the buffer overflow.\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-131: Incorrect Calculation of Buffer Size vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\nSecure baseline configurations establish a hardened environment, while rigorous testing practices (e.g., SAST, DAST) identify and address memory vulnerabilities before code reaches production. Malicious code protections further reduce risk by detecting, blocking, and responding to exploitation attempts. The platform runs on OS versions that inherit security features from RHEL, such as SELinux and Address Space Layout Randomization (ASLR). Least functionality and process isolation reduce the attack surface by disabling unauthorized services and containing any corruption within the originating process, preventing broader system impact.", "threat_severity": "Moderate"}

{}