CVE-2025-49179

A flaw was found in the X Record extension. The RecordSanityCheckRegisterClients function does not check for an integer overflow when computing request length, which allows a client to bypass length checks.

CVSS v3 7.3 HIGH

7.3^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.5

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact LOW

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://access.redhat.com/errata/RHSA-2025:10258
https://access.redhat.com/errata/RHSA-2025:10342
https://access.redhat.com/errata/RHSA-2025:10343
https://access.redhat.com/errata/RHSA-2025:10344
https://access.redhat.com/errata/RHSA-2025:10346
https://access.redhat.com/errata/RHSA-2025:10347
https://access.redhat.com/errata/RHSA-2025:10348
https://access.redhat.com/errata/RHSA-2025:10349
https://access.redhat.com/errata/RHSA-2025:10350
https://access.redhat.com/errata/RHSA-2025:10351
https://access.redhat.com/errata/RHSA-2025:10352
https://access.redhat.com/errata/RHSA-2025:10355
https://access.redhat.com/errata/RHSA-2025:10356
https://access.redhat.com/errata/RHSA-2025:10360
https://access.redhat.com/errata/RHSA-2025:10370
https://access.redhat.com/errata/RHSA-2025:10374
https://access.redhat.com/errata/RHSA-2025:10375
https://access.redhat.com/errata/RHSA-2025:10376
https://access.redhat.com/errata/RHSA-2025:10377
https://access.redhat.com/errata/RHSA-2025:10378
https://access.redhat.com/errata/RHSA-2025:10381
https://access.redhat.com/errata/RHSA-2025:10410
https://access.redhat.com/errata/RHSA-2025:9303
https://access.redhat.com/errata/RHSA-2025:9304
https://access.redhat.com/errata/RHSA-2025:9305
https://access.redhat.com/errata/RHSA-2025:9306
https://access.redhat.com/errata/RHSA-2025:9392
https://access.redhat.com/errata/RHSA-2025:9964
https://access.redhat.com/security/cve/CVE-2025-49179
https://bugzilla.redhat.com/show_bug.cgi?id=2369978

Configurations

No configuration.

History

07 Jul 2025, 14:15

Type	Values Removed	Values Added
References		() https://access.redhat.com/errata/RHSA-2025:10381 - () https://access.redhat.com/errata/RHSA-2025:10410 -

07 Jul 2025, 08:15

Type	Values Removed	Values Added
References		() https://access.redhat.com/errata/RHSA-2025:10344 - () https://access.redhat.com/errata/RHSA-2025:10346 - () https://access.redhat.com/errata/RHSA-2025:10349 - () https://access.redhat.com/errata/RHSA-2025:10350 - () https://access.redhat.com/errata/RHSA-2025:10351 - () https://access.redhat.com/errata/RHSA-2025:10352 - () https://access.redhat.com/errata/RHSA-2025:10355 - () https://access.redhat.com/errata/RHSA-2025:10356 - () https://access.redhat.com/errata/RHSA-2025:10360 - () https://access.redhat.com/errata/RHSA-2025:10370 - () https://access.redhat.com/errata/RHSA-2025:10374 - () https://access.redhat.com/errata/RHSA-2025:10375 - () https://access.redhat.com/errata/RHSA-2025:10376 - () https://access.redhat.com/errata/RHSA-2025:10377 - () https://access.redhat.com/errata/RHSA-2025:10378 -

07 Jul 2025, 03:15

Type	Values Removed	Values Added
References		() https://access.redhat.com/errata/RHSA-2025:10342 - () https://access.redhat.com/errata/RHSA-2025:10343 - () https://access.redhat.com/errata/RHSA-2025:10347 - () https://access.redhat.com/errata/RHSA-2025:10348 -

02 Jul 2025, 20:15

Type	Values Removed	Values Added
References		() https://access.redhat.com/errata/RHSA-2025:10258 -

30 Jun 2025, 20:15

Type	Values Removed	Values Added
References		() https://access.redhat.com/errata/RHSA-2025:9964 -

30 Jun 2025, 09:15

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~6.6~~	v2 : unknown v3 : 7.3

23 Jun 2025, 19:15

Type	Values Removed	Values Added
References		() https://access.redhat.com/errata/RHSA-2025:9303 - () https://access.redhat.com/errata/RHSA-2025:9304 - () https://access.redhat.com/errata/RHSA-2025:9305 - () https://access.redhat.com/errata/RHSA-2025:9306 - () https://access.redhat.com/errata/RHSA-2025:9392 -

23 Jun 2025, 07:15

Type	Values Removed	Values Added
References		() https://access.redhat.com/errata/RHSA-2025:9303 - () https://access.redhat.com/errata/RHSA-2025:9304 - () https://access.redhat.com/errata/RHSA-2025:9305 - () https://access.redhat.com/errata/RHSA-2025:9306 -
References		() https://access.redhat.com/errata/RHSA-2025:9303 - () https://access.redhat.com/errata/RHSA-2025:9304 - () https://access.redhat.com/errata/RHSA-2025:9305 - () https://access.redhat.com/errata/RHSA-2025:9306 -
Summary		(es) Se encontró una falla en la extensión X Record. La función RecordSanityCheckRegisterClients no verifica si hay un desbordamiento de enteros al calcular la longitud de la solicitud, lo que permite que un cliente omita las verificaciones de longitud.
References		() https://access.redhat.com/errata/RHSA-2025:9303 - () https://access.redhat.com/errata/RHSA-2025:9304 - () https://access.redhat.com/errata/RHSA-2025:9305 - () https://access.redhat.com/errata/RHSA-2025:9306 -

17 Jun 2025, 20:50

Type	Values Removed	Values Added
References	~~{'url': 'https://access.redhat.com/errata/RHSA-2025:9303', 'source': 'secalert@redhat.com'}~~ ~~{'url': 'https://access.redhat.com/errata/RHSA-2025:9304', 'source': 'secalert@redhat.com'}~~ ~~{'url': 'https://access.redhat.com/errata/RHSA-2025:9305', 'source': 'secalert@redhat.com'}~~ ~~{'url': 'https://access.redhat.com/errata/RHSA-2025:9306', 'source': 'secalert@redhat.com'}~~
References	~~{'url': 'https://access.redhat.com/errata/RHSA-2025:9303', 'source': 'secalert@redhat.com'}~~ ~~{'url': 'https://access.redhat.com/errata/RHSA-2025:9304', 'source': 'secalert@redhat.com'}~~ ~~{'url': 'https://access.redhat.com/errata/RHSA-2025:9305', 'source': 'secalert@redhat.com'}~~ ~~{'url': 'https://access.redhat.com/errata/RHSA-2025:9306', 'source': 'secalert@redhat.com'}~~
References	~~{'url': 'https://access.redhat.com/errata/RHSA-2025:9303', 'source': 'secalert@redhat.com'}~~ ~~{'url': 'https://access.redhat.com/errata/RHSA-2025:9304', 'source': 'secalert@redhat.com'}~~ ~~{'url': 'https://access.redhat.com/errata/RHSA-2025:9305', 'source': 'secalert@redhat.com'}~~ ~~{'url': 'https://access.redhat.com/errata/RHSA-2025:9306', 'source': 'secalert@redhat.com'}~~

17 Jun 2025, 15:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-06-17 15:15

Updated : 2025-07-07 14:15

NVD link : CVE-2025-49179

Mitre link : CVE-2025-49179

CVE.ORG link : CVE-2025-49179

JSON object : View

Products Affected

No product.

CWE

CWE-190

Integer Overflow or Wraparound

{"id": "CVE-2025-49179", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "secalert@redhat.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.3, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.5, "exploitabilityScore": 1.8}]}, "published": "2025-06-17T15:15:46.000", "references": [{"url": "https://access.redhat.com/errata/RHSA-2025:10258", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:10342", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:10343", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:10344", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:10346", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:10347", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:10348", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:10349", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:10350", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:10351", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:10352", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:10355", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:10356", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:10360", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:10370", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:10374", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:10375", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:10376", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:10377", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:10378", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:10381", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:10410", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:9303", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:9304", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:9305", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:9306", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:9392", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:9964", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/security/cve/CVE-2025-49179", "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369978", "source": "secalert@redhat.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "secalert@redhat.com", "description": [{"lang": "en", "value": "CWE-190"}]}], "descriptions": [{"lang": "en", "value": "A flaw was found in the X Record extension. The RecordSanityCheckRegisterClients function does not check for an integer overflow when computing request length, which allows a client to bypass length checks."}, {"lang": "es", "value": "Se encontr\u00f3 una falla en la extensi\u00f3n X Record. La funci\u00f3n RecordSanityCheckRegisterClients no verifica si hay un desbordamiento de enteros al calcular la longitud de la solicitud, lo que permite que un cliente omita las verificaciones de longitud."}], "lastModified": "2025-07-07T14:15:24.697", "sourceIdentifier": "secalert@redhat.com"}

7.3 /10