CVE-2025-0395

ADVISORY - ubuntu

Summary

When the assert() function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message string and size information, which may lead to a buffer overflow if the message string size aligns to page size.

EPSS Score⁠: 0.00175 (0.398)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-131⁠

Incorrect Calculation of Buffer Size

ADVISORY - redhat

CWE-131⁠

Incorrect Calculation of Buffer Size

Impacted images

Advisories

Ubuntu

CREATED

4 months ago

UPDATED

10 days ago

ADVISORY IDCVE-2025-0395⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

Package	Type	OS Name	OS Version	Affected Ranges	Fix Versions
ubuntu/glibc	deb	ubuntu	22.04	<2.35-0ubuntu3.9	2.35-0ubuntu3.9
ubuntu/glibc	deb	ubuntu	24.10	<2.40-1ubuntu3.1	2.40-1ubuntu3.1
ubuntu/glibc	deb	ubuntu	25.04	<2.41-1ubuntu1	2.41-1ubuntu1
ubuntu/glibc	deb	ubuntu	24.04	<2.39-0ubuntu8.4	2.39-0ubuntu8.4
ubuntu/glibc	deb	ubuntu	20.04	<2.31-0ubuntu9.17	2.31-0ubuntu9.17

Severity and metrics

No CVSS data available from this advisory.

NIST

CREATED

4 months ago

UPDATED

17 days ago

ADVISORY IDCVE-2025-0395⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-131⁠

CVSS SCORE

7.5high

Debian

CREATED

4 months ago

UPDATED

17 days ago

ADVISORY IDCVE-2025-0395⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Alma

CREATED

1 month ago

UPDATED

1 month ago

ADVISORY IDALSA-2025:3828⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

Alma

CREATED

20 days ago

UPDATED

19 days ago

ADVISORY IDALSA-2025:4244⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

Amazon

CREATED

1 month ago

UPDATED

1 month ago

ADVISORY IDALAS2-2025-2828⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

Red Hat

CREATED

4 months ago

UPDATED

2 months ago

ADVISORY IDCVE-2025-0395⁠

EXPLOITABILITY SCORE

0.8

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-131⁠

CVSS SCORE

5.5medium

Oracle

CREATED

19 days ago

UPDATED

19 days ago

ADVISORY IDELSA-2025-20300⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

Oracle

CREATED

1 month ago

UPDATED

1 month ago

ADVISORY IDELSA-2025-3828⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

Oracle

CREATED

20 days ago

UPDATED

20 days ago

ADVISORY IDELSA-2025-4244⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

Chainguard

CREATED

4 months ago

UPDATED

4 months ago

ADVISORY ID

CGA-7gh9-w86h-98jh

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY