CVE-2025-1470

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2025-1470
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-1470.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-1470
Published
2025-02-21T10:15:11.243Z
Modified
2026-04-02T12:34:32.043019Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

In Eclipse OMR, from the initial contribution to version 0.4.0, some OMR internal port library and utilities consumers of z/OS atoe functions do not check their return values for NULL memory pointers or for memory allocation failures. This can lead to NULL pointer dereference crashes. Beginning in version 0.5.0, internal OMR consumers of atoe functions handle NULL return values and memory allocation failures correctly.

References

Affected packages

Git / github.com/eclipse-omr/omr

Affected ranges

Type
GIT
Repo
https://github.com/eclipse-omr/omr
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
6bfb20f781c2cf71ad1b55b2774b58a40bb959ff
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "0.4.0"
        }
    ]
}

Affected versions

omr-0.*
omr-0.1.0
omr-0.2.0
omr-0.3.0
omr-0.4.0

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-1470.json"