CVE-2025-26519
ADVISORY - nistSummary
musl libc 0.9.13 through 1.2.5 before 1.2.6 has an out-of-bounds write vulnerability when an attacker can trigger iconv conversion of untrusted EUC-KR text to UTF-8.
Alpine
CREATED
UPDATED
ADVISORY IDCVE-2025-26519
EXPLOITABILITY SCORE
-
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
| Package | Type | OS Name | OS Version | Affected Ranges | Fix Versions |
|---|---|---|---|---|---|
| alpine/musl | apk | alpine | 3.21 | <1.2.5-r9 | 1.2.5-r9 |
| alpine/musl | apk | alpine | 3.22 | <1.2.5-r10 | 1.2.5-r10 |
| alpine/musl | apk | alpine | edge | <1.2.5-r10 | 1.2.5-r10 |
| alpine/musl | apk | alpine | 3.16 | <1.2.3-r4 | 1.2.3-r4 |
| alpine/musl | apk | alpine | 3.19 | <1.2.4_git20230717-r5 | 1.2.4_git20230717-r5 |
| alpine/musl | apk | alpine | 3.20 | <1.2.5-r1 | 1.2.5-r1 |
| alpine/musl | apk | alpine | 3.18 | <1.2.4-r3 | 1.2.4-r3 |
| alpine/musl | apk | alpine | 3.17 | <1.2.3-r6 | 1.2.3-r6 |
Severity and metrics
No CVSS data available from this advisory.
NIST
CREATED
UPDATED
ADVISORY IDCVE-2025-26519
EXPLOITABILITY SCORE
1.4
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CVSS SCORE
8.1highDebian
CREATED
UPDATED
ADVISORY IDCVE-2025-26519
EXPLOITABILITY SCORE
-
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
Ubuntu
CREATED
UPDATED
ADVISORY IDCVE-2025-26519
EXPLOITABILITY SCORE
-
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-