CVE-2025-0395

ADVISORY - nist

Summary

When the assert() function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message string and size information, which may lead to a buffer overflow if the message string size aligns to page size.

EPSS Score⁠: 0.00271 (0.503)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-131⁠

Incorrect Calculation of Buffer Size

ADVISORY - redhat

CWE-131⁠

Incorrect Calculation of Buffer Size

Impacted images

Advisories

Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.