Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2025-6966

Опубликовано: 05 дек. 2025
Источник: debian
EPSS Низкий

Описание

NULL pointer dereference in TagSection.keys() in python-apt on APT-based Linux systems allows a local attacker to cause a denial of service (process crash) via a crafted deb822 file with a malformed non-UTF-8 key.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
python-aptfixed3.1.0package
python-aptno-dsatrixiepackage
python-aptno-dsabookwormpackage

Примечания

  • https://bugs.launchpad.net/ubuntu/+source/python-apt/+bug/2091865

  • https://launchpadlibrarian.net/764050984/0001-Fix-invalid-nullptr-dereference-in-TagSection.keys.patch

EPSS

Процентиль: 3%
0.00015
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2025-6966

CVSS3: 5.5
ubuntu
около 1 месяца назад

NULL pointer dereference in TagSection.keys() in python-apt on APT-based Linux systems allows a local attacker to cause a denial of service (process crash) via a crafted deb822 file with a malformed non-UTF-8 key.

nvd логотип

CVE-2025-6966

CVSS3: 5.5
nvd
около 1 месяца назад

NULL pointer dereference in TagSection.keys() in python-apt on APT-based Linux systems allows a local attacker to cause a denial of service (process crash) via a crafted deb822 file with a malformed non-UTF-8 key.

github логотип

GHSA-285f-828q-q7g5

CVSS3: 5.5
github
около 1 месяца назад

NULL pointer dereference in TagSection.keys() in python-apt on APT-based Linux systems allows a local attacker to cause a denial of service (process crash) via a crafted deb822 file with a malformed non-UTF-8 key.

EPSS

Процентиль: 3%
0.00015
Низкий