CVE-2025-52568
- Source
- https://cve.org/CVERecord?id=CVE-2025-52568
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-52568.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-52568
- Aliases
-
- GHSA-cmp2-5f6g-mw34
- Published
- 2025-06-24T03:06:12.471Z
- Modified
- 2026-04-10T05:30:40.147710Z
- Severity
-
- 8.8 (High) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N CVSS Calculator
- Summary
- NeKernal Multiple Memory Corruption Vulnerabilities in mkfs.hefs
- Details
-
NeKernal is a free and open-source operating system stack. Prior to version 0.0.3, there are several memory safety issues that can lead to memory corruption, disk image corruption, denial of service, and potential code execution. These issues stem from unchecked memory operations, unsafe typecasting, and improper input validation. This issue has been patched in version 0.0.3.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/52xxx/CVE-2025-52568.json", "cwe_ids": [ "CWE-20", "CWE-770" ], "cna_assigner": "GitHub_M" }- References
-
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/52xxx/CVE-2025-52568.json
- https://github.com/nekernel-org/nekernel/security/advisories/GHSA-cmp2-5f6g-mw34
- https://nvd.nist.gov/vuln/detail/CVE-2025-52568
- https://github.com/nekernel-org/nekernel/commit/6506875ad0ab210b82a5c4ce227bf851508de17d
- https://github.com/nekernel-org/nekernel/commit/6511afbf405c31513bc88ab06bca58218610a994
- https://github.com/nekernel-org/nekernel/pull/35
- https://github.com/nekernel-org/nekernel/pull/36
Affected packages
Git / github.com/ne-foss-org/ne-kernel
Affected ranges
- Type
- GIT
- Repo
- https://github.com/ne-foss-org/ne-kernel
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
- Type
- GIT
- Repo
- https://github.com/ne-foss-org/ne-kernel
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed