CVE-2025-5278
4.4
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L
Summary
A flaw was found in GNU Coreutils. The sort utility's begfield() function is vulnerable to a heap buffer under-read. The program may access memory outside the allocated buffer if a user runs a crafted command using the traditional key format. A malicious input could lead to a crash or leak sensitive data.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
7.2 < 9.8 | affected | ||
| Red Hat | Red Hat Enterprise Linux 10 | 0:9.5-8.el10_2 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 9 | 0:8.32-41.el9_8 < * | unaffected |
| Red Hat | Red Hat Discovery 2 | 1782756541 < * | unaffected |
| Red Hat | Red Hat Insights proxy 1.5 | 1782890503 < * | unaffected |
| Red Hat | Red Hat OpenShift distributed tracing 3.10.1 | 1782501180 < * | unaffected |
| Red Hat | Red Hat OpenShift distributed tracing 3.10.1 | 1782501200 < * | unaffected |
| Red Hat | Red Hat OpenShift distributed tracing 3.10.1 | 1782498923 < * | unaffected |
| Red Hat | Red Hat OpenShift distributed tracing 3.10.1 | 1782510941 < * | unaffected |
| Red Hat | Red Hat OpenShift distributed tracing 3.10.1 | 1782501220 < * | unaffected |
| Red Hat | Red Hat OpenShift distributed tracing 3.10.1 | 1782501196 < * | unaffected |
| Red Hat | Red Hat OpenShift distributed tracing 3.10.1 | 1782501195 < * | unaffected |
Weaknesses
- CWE-121: Stack-based Buffer Overflow
Workarounds
Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
ADP Enrichment
CVE Program Container
Additional References
- http://www.openwall.com/lists/oss-security/2025/05/27/2
- http://www.openwall.com/lists/oss-security/2025/05/29/1
- https://security-tracker.debian.org/tracker/CVE-2025-5278
- https://cgit.git.savannah.gnu.org/cgit/coreutils.git/commit/?id=8c9602e3a145e9596dc1a63c6ed67865814b6633
- https://cgit.git.savannah.gnu.org/cgit/coreutils.git/tree/NEWS?id=8c9602e3a145e9596dc1a63c6ed67865814b6633#n14
- http://www.openwall.com/lists/oss-security/2025/05/29/2
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://access.redhat.com/errata/RHSA-2026:28911
- https://access.redhat.com/errata/RHSA-2026:33124
- https://access.redhat.com/errata/RHSA-2026:33313
- https://access.redhat.com/errata/RHSA-2026:33612
- https://access.redhat.com/errata/RHSA-2026:34102
- https://access.redhat.com/security/cve/CVE-2025-5278
- https://bugzilla.redhat.com/show_bug.cgi?id=2368764
- https://cgit.git.savannah.gnu.org/cgit/coreutils.git/commit/?id=8c9602e3a145e9596dc1a63c6ed67865814b6633
- https://debbugs.gnu.org/cgi/bugreport.cgi?bug=78507
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.