The security fix for CVE-2025-0728 in eclipse-threadx NetX Duo refactors error handling in the HTTP server PUT process to use a shared cleanup label, but this unified cleanup path unconditionally calls fxfileclose() even when the file was never successfully opened. Multiple error branches jump to the shared cleanup label before any file open operation has occurred, causing fxfileclose() to operate on an uninitialized file handle, leading to undefined behavior, double-close issues, or memory corruption.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/11xxx/CVE-2026-11576.json",
"cna_assigner": "eclipse",
"cwe_ids": [
"CWE-415",
"CWE-459",
"CWE-908"
]
}{
"source": [
"AFFECTED_FIELD",
"CPE_RANGE"
],
"cpe": "cpe:2.3:a:eclipse:threadx_netx_duo:*:*:*:*:*:*:*:*",
"extracted_events": [
{
"introduced": "6.4.2"
},
{
"last_affected": "6.5.0.202601"
}
]
}