CVE-2025-6021

Summary

A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input.

Affected Software

VendorProductVersion RangeStatus
0 < 2.14.4affected
Red HatRed Hat Enterprise Linux 100:2.12.5-7.el10_0 < *unaffected
Red HatRed Hat Enterprise Linux 7 Extended Lifecycle Support0:2.9.1-6.el7_9.10 < *unaffected
Red HatRed Hat Enterprise Linux 80:2.9.7-21.el8_10.1 < *unaffected
Red HatRed Hat Enterprise Linux 80:2.9.7-21.el8_10.1 < *unaffected
Red HatRed Hat Enterprise Linux 8.2 Advanced Update Support0:2.9.7-9.el8_2.3 < *unaffected
Red HatRed Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support0:2.9.7-9.el8_4.6 < *unaffected
Red HatRed Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On0:2.9.7-9.el8_4.6 < *unaffected
Red HatRed Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support0:2.9.7-13.el8_6.10 < *unaffected
Red HatRed Hat Enterprise Linux 8.6 Telecommunications Update Service0:2.9.7-13.el8_6.10 < *unaffected
Red HatRed Hat Enterprise Linux 8.6 Update Services for SAP Solutions0:2.9.7-13.el8_6.10 < *unaffected
Red HatRed Hat Enterprise Linux 8.8 Telecommunications Update Service0:2.9.7-16.el8_8.9 < *unaffected
Red HatRed Hat Enterprise Linux 8.8 Update Services for SAP Solutions0:2.9.7-16.el8_8.9 < *unaffected
Red HatRed Hat Enterprise Linux 90:2.9.13-10.el9_6 < *unaffected
Red HatRed Hat Enterprise Linux 90:2.9.13-10.el9_6 < *unaffected
Red HatRed Hat Enterprise Linux 9.0 Update Services for SAP Solutions0:2.9.13-1.el9_0.5 < *unaffected
Red HatRed Hat Enterprise Linux 9.2 Update Services for SAP Solutions0:2.9.13-3.el9_2.7 < *unaffected
Red HatRed Hat Enterprise Linux 9.4 Extended Update Support0:2.9.13-10.el9_4 < *unaffected
Red HatRed Hat OpenShift Container Platform 4.12412.86.202509030110-0 < *unaffected
Red HatRed Hat OpenShift Container Platform 4.13413.92.202509030117-0 < *unaffected
Red HatRed Hat OpenShift Container Platform 4.14414.92.202508041909-0 < *unaffected
Red HatRed Hat OpenShift Container Platform 4.15415.92.202508192014-0 < *unaffected
Red HatRed Hat OpenShift Container Platform 4.16416.94.202508050040-0 < *unaffected
Red HatRed Hat OpenShift Container Platform 4.17417.94.202508141510-0 < *unaffected
Red HatRed Hat OpenShift Container Platform 4.18418.94.202508060022-0 < *unaffected
Red HatRed Hat OpenShift Container Platform 4.194.19.9.6.202507230107-0 < *unaffected
Red HatRed Hat Discovery 22.0.1-1754478727 < *unaffected
Red HatRed Hat Hardened Images2.15.2-0.3.hum1 < *unaffected
Red HatRed Hat Insights proxy 1.51.5.5-1754504343 < *unaffected

Weaknesses

  • CWE-787: Out-of-bounds Write

Workarounds

Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability. Users are strongly advised to apply vendor-supplied patches as soon as they become available to address the underlying integer overflow flaw in the affected code.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: yes
    • Technical Impact: partial

Additional References

CVE Program Container

Additional References

Additional References

References