CVE-2025-0725

ADVISORY - nist

Summary

When libcurl is asked to perform automatic gzip decompression of content-encoded HTTP responses with the CURLOPT_ACCEPT_ENCODING option, using zlib 1.2.0.3 or older, an attacker-controlled integer overflow would make libcurl perform a buffer overflow.

EPSS Score⁠: 0.00738 (0.723)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-120⁠

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

ADVISORY - redhat

CWE-680⁠

Integer Overflow to Buffer Overflow

Impacted images

Advisories

Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.