CVE-2025-6021
HIGHDescription
A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input.
Is your site exposed to CVE-2025-6021?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| xmlsoft | libxml2 |
| redhat | jboss_core_services |
| redhat | openshift_container_platform |
| redhat | openshift_container_platform |
| redhat | openshift_container_platform |
| redhat | openshift_container_platform |
| redhat | openshift_container_platform |
| redhat | openshift_container_platform |
| redhat | openshift_container_platform |
| redhat | openshift_container_platform_for_arm64 |
| redhat | openshift_container_platform_for_arm64 |
| redhat | openshift_container_platform_for_arm64 |
| redhat | openshift_container_platform_for_arm64 |
| redhat | openshift_container_platform_for_arm64 |
| redhat | openshift_container_platform_for_arm64 |
| redhat | openshift_container_platform_for_ibm_z |
| redhat | openshift_container_platform_for_ibm_z |
| redhat | openshift_container_platform_for_ibm_z |
| redhat | openshift_container_platform_for_ibm_z |
| redhat | openshift_container_platform_for_ibm_z |
| redhat | openshift_container_platform_for_ibm_z |
| redhat | openshift_container_platform_for_linuxone |
| redhat | openshift_container_platform_for_linuxone |
| redhat | openshift_container_platform_for_linuxone |
| redhat | openshift_container_platform_for_linuxone |
| redhat | openshift_container_platform_for_linuxone |
| redhat | openshift_container_platform_for_linuxone |
| redhat | openshift_container_platform_for_power |
| redhat | openshift_container_platform_for_power |
| redhat | openshift_container_platform_for_power |
| redhat | openshift_container_platform_for_power |
| redhat | openshift_container_platform_for_power |
| redhat | openshift_container_platform_for_power |
| redhat | enterprise_linux |
| redhat | enterprise_linux |
| redhat | enterprise_linux |
| redhat | enterprise_linux_eus |
| redhat | enterprise_linux_eus |
| redhat | enterprise_linux_eus |
| redhat | enterprise_linux_eus |
| redhat | enterprise_linux_eus |
| redhat | enterprise_linux_eus |
| redhat | enterprise_linux_for_arm_64 |
| redhat | enterprise_linux_for_arm_64 |
| redhat | enterprise_linux_for_arm_64 |
| redhat | enterprise_linux_for_arm_64 |
| redhat | enterprise_linux_for_arm_64_eus |
| redhat | enterprise_linux_for_arm_64_eus |
| redhat | enterprise_linux_for_arm_64_eus |
| redhat | enterprise_linux_for_ibm_z_systems |
| redhat | enterprise_linux_for_ibm_z_systems |
| redhat | enterprise_linux_for_ibm_z_systems |
| redhat | enterprise_linux_for_ibm_z_systems_eus |
| redhat | enterprise_linux_for_ibm_z_systems_eus |
| redhat | enterprise_linux_for_ibm_z_systems_eus |
| redhat | enterprise_linux_for_ibm_z_systems_eus |
| redhat | enterprise_linux_for_power_little_endian |
| redhat | enterprise_linux_for_power_little_endian |
| redhat | enterprise_linux_for_power_little_endian |
| redhat | enterprise_linux_for_power_little_endian_eus |
| redhat | enterprise_linux_for_power_little_endian_eus |
| redhat | enterprise_linux_for_power_little_endian_eus |
| redhat | enterprise_linux_server |
| redhat | enterprise_linux_server_aus |
| redhat | enterprise_linux_server_aus |
| redhat | enterprise_linux_server_aus |
| redhat | enterprise_linux_server_aus |
| redhat | enterprise_linux_server_aus |
| redhat | enterprise_linux_server_aus |
| redhat | enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions |
| redhat | enterprise_linux_server_tus |
| redhat | in-vehicle_operating_system |
References
Advisories & Patches
Exploits
Other References
Frequently Asked Questions
What is CVE-2025-6021? +
How severe is CVE-2025-6021? +
What products are affected by CVE-2025-6021? +
How do I check if I'm vulnerable to CVE-2025-6021? +
Related Vulnerabilities
LibreOffice Calc can import tracked changes from a spreadsheet document. A heap buffer overflow existed when a document reused the …
LibreOffice can import presentations in the legacy binary PPT format. A stack buffer overflow existed when importing a colour-replacement record. …
A heap use-after-free existed when importing the blank-width characters of an ODF number format. A position value read from the …
LibreOffice can import drawings in the DXF format used by CAD software. A heap buffer overflow existed when importing a …
The method "sock_recvfrom_into()" of "asyncio.ProacterEventLoop" (Windows only) was missing a boundary check for the data buffer when using nbytes parameter. …
editorconfig-core-c is an EditorConfig core library for use by plugins supporting EditorConfig parsing. Versions up to and including 0.12.10 have …