Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2025-0838

Опубликовано: 21 фев. 2025
Источник: redhat
CVSS3: 5.6
EPSS Низкий

Описание

There exists a heap buffer overflow vulnerable in Abseil-cpp. The sized constructors, reserve(), and rehash() methods of absl::{flat,node}hash{set,map} did not impose an upper bound on their size argument. As a result, it was possible for a caller to pass a very large size that would cause an integer overflow when computing the size of the container's backing store, and a subsequent out-of-bounds memory write. Subsequent accesses to the container might also access out-of-bounds memory. We recommend upgrading past commit 5a0e2cb5e3958dd90bb8569a2766622cb74d90c1

A flaw was found in Abseil-cpp. This vulnerability allows an attacker to cause an out-of-bounds memory write and potential subsequent out-of-bounds memory access via passing a very large size argument to sized constructors, leading to a heap buffer overflow.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux AI (RHEL AI)libpdfiumFix deferred

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-190
https://bugzilla.redhat.com/show_bug.cgi?id=2346987abseil-cpp: Heap Buffer overflow in Abseil

EPSS

Процентиль: 33%
0.00134
Низкий

5.6 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2025-0838

CVSS3: 9.8
ubuntu
около 1 года назад

There exists a heap buffer overflow vulnerable in Abseil-cpp. The sized constructors, reserve(), and rehash() methods of absl::{flat,node}hash{set,map} did not impose an upper bound on their size argument. As a result, it was possible for a caller to pass a very large size that would cause an integer overflow when computing the size of the container's backing store, and a subsequent out-of-bounds memory write. Subsequent accesses to the container might also access out-of-bounds memory. We recommend upgrading past commit 5a0e2cb5e3958dd90bb8569a2766622cb74d90c1

nvd логотип

CVE-2025-0838

CVSS3: 9.8
nvd
около 1 года назад

There exists a heap buffer overflow vulnerable in Abseil-cpp. The sized constructors, reserve(), and rehash() methods of absl::{flat,node}hash{set,map} did not impose an upper bound on their size argument. As a result, it was possible for a caller to pass a very large size that would cause an integer overflow when computing the size of the container's backing store, and a subsequent out-of-bounds memory write. Subsequent accesses to the container might also access out-of-bounds memory. We recommend upgrading past commit 5a0e2cb5e3958dd90bb8569a2766622cb74d90c1

debian логотип

CVE-2025-0838

CVSS3: 9.8
debian
около 1 года назад

There exists a heap buffer overflow vulnerable in Abseil-cpp. The size ...

suse-cvrf логотип

SUSE-SU-2026:0412-1

suse-cvrf
около 2 месяцев назад

Security update for abseil-cpp

suse-cvrf логотип

SUSE-SU-2026:0338-1

suse-cvrf
2 месяца назад

Security update for abseil-cpp

EPSS

Процентиль: 33%
0.00134
Низкий

5.6 Medium

CVSS3