CVE-2025-0395

Source
https://cve.org/CVERecord?id=CVE-2025-0395
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-0395.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-0395
Downstream
Related
Published
2025-01-22T13:11:30.406Z
Modified
2026-07-09T18:30:44.075266989Z
Severity
  • 6.2 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

When the assert() function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message string and size information, which may lead to a buffer overflow if the message string size aligns to page size.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/0xxx/CVE-2025-0395.json",
    "cna_assigner": "glibc",
    "cwe_ids": [
        "CWE-131"
    ]
}
References

Affected packages

Git / sourceware.org/git/glibc.git

Affected ranges

Type
GIT
Repo
https://sourceware.org/git/glibc.git
Events
Introduced
6392473fe970b0cdace62f31000a83ba0fcf6161
Last affected
3d1aed874918c466a4477af1da35983ab036690e
Database specific
{
    "source": "AFFECTED_FIELD",
    "extracted_events": [
        {
            "introduced": "2.13"
        },
        {
            "last_affected": "2.40"
        }
    ]
}

Affected versions

Other
changelog-ends-here
glibc-2.*
glibc-2.13
glibc-2.14
glibc-2.14.9000
glibc-2.15
glibc-2.16
glibc-2.16-ports-merge
glibc-2.16-tps
glibc-2.16.0
glibc-2.16.90
glibc-2.17
glibc-2.17.90
glibc-2.18
glibc-2.18.90
glibc-2.19
glibc-2.19.90
glibc-2.20
glibc-2.20.90
glibc-2.21
glibc-2.21.90
glibc-2.22
glibc-2.22.90
glibc-2.23
glibc-2.23.90
glibc-2.24
glibc-2.24.90
glibc-2.25
glibc-2.25.90
glibc-2.26
glibc-2.26.9000
glibc-2.27
glibc-2.27.9000
glibc-2.28
glibc-2.28.9000
glibc-2.29
glibc-2.29.9000
glibc-2.30
glibc-2.30.9000
glibc-2.31
glibc-2.31.9000
glibc-2.32
glibc-2.32.9000
glibc-2.33
glibc-2.33.9000
glibc-2.34
glibc-2.34.9000
glibc-2.35
glibc-2.35.9000
glibc-2.36
glibc-2.36.9000
glibc-2.37
glibc-2.37.9000
glibc-2.38
glibc-2.38.9000
glibc-2.39
glibc-2.39.9000
glibc-2.40

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-0395.json"