Skip to main content

SUID CVE-2025-14104

| EUVDEUVD-2025-201450 MEDIUM
Out-of-bounds Read (CWE-125)
2025-12-05 secalert@redhat.com
6.1
CVSS 3.1 · Vendor: redhat
Share

Severity by source

Vendor (redhat) PRIMARY
6.1 MEDIUM
AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H
Ubuntu
MEDIUM
qualitative
SUSE
MEDIUM
qualitative
Red Hat
6.1 MEDIUM
qualitative

Primary rating from Vendor (redhat).

CVSS VectorVendor: redhat

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
None
Availability
High

Lifecycle Timeline

4
Patch released
Mar 31, 2026 - 21:13 nvd
Patch available
EUVD ID Assigned
Mar 15, 2026 - 17:08 euvd
EUVD-2025-201450
Analysis Generated
Mar 15, 2026 - 17:08 vuln.today
CVE Published
Dec 05, 2025 - 17:16 nvd
MEDIUM 6.1

DescriptionCVE.org

A flaw was found in util-linux. This vulnerability allows a heap buffer overread when processing 256-byte usernames, specifically within the setpwnam() function, affecting SUID (Set User ID) login-utils utilities writing to the password database.

AnalysisAI

A flaw was found in util-linux.

Technical ContextAI

An out-of-bounds memory access occurs when code reads from or writes to memory locations outside the intended buffer boundaries. This vulnerability is classified as Out-of-bounds Read (CWE-125).

RemediationAI

Implement proper bounds checking on all array and buffer accesses. Use memory-safe languages or static analysis tools to detect OOB issues.

Vendor StatusVendor

Ubuntu

Priority: Medium
util-linux
Release Status Version
trusty needs-triage -
xenial needs-triage -
bionic needs-triage -
focal needs-triage -
upstream released 2.41.3-1
jammy not-affected code not compiled
noble not-affected code not compiled
plucky not-affected code not compiled
questing not-affected code not compiled

Debian

Bug #1122058
util-linux
Release Status Fixed Version Urgency
bullseye (security), bullseye vulnerable 2.36.1-8+deb11u2 -
bookworm vulnerable 2.38.1-5+deb12u3 -
bookworm (security) vulnerable 2.38.1-5+deb12u1 -
trixie vulnerable 2.41-5 -
forky, sid fixed 2.41.3-4 -
(unstable) fixed 2.41.3-1 unimportant

SUSE

Severity: Medium
Product Status
Container private-registry/harbor-registry:1.1.0-1.10 Container private-registry/harbor-registryctl:1.1.0-1.10 Container suse/multi-linux-manager/5.1/x86_64/proxy-httpd:5.1.2.8.15.2 Container suse/multi-linux-manager/5.1/x86_64/proxy-salt-broker:5.1.2.9.13.2 Container suse/multi-linux-manager/5.1/x86_64/server-saline:5.1.2.9.13.1 Container suse/multi-linux-manager/5.1/x86_64/server:5.1.2.8.13.2 Image proxy-httpd-image Image server-image Image server-saline-image Affected
Container suse/ltss/sle12.5/sles12sp5:8.5.191 Affected
Container suse/manager/5.0/x86_64/server:latest Affected
Container suse/multi-linux-manager/5.1/x86_64/server-hub-xmlrpc-api:5.1.2.8.13.1 Image SLES15-SP7-Azure-3P Image SLES15-SP7-Azure-Basic Image SLES15-SP7-Azure-Standard Image SLES15-SP7-BYOS-Azure Image SLES15-SP7-BYOS-EC2 Image SLES15-SP7-BYOS-GCE Image SLES15-SP7-CHOST-BYOS-Aliyun Image SLES15-SP7-CHOST-BYOS-Azure Image SLES15-SP7-CHOST-BYOS-EC2 Image SLES15-SP7-CHOST-BYOS-GCE Image SLES15-SP7-CHOST-BYOS-GDC Image SLES15-SP7-CHOST-BYOS-SAP-CCloud Image SLES15-SP7-EC2 Image SLES15-SP7-EC2-ECS-HVM Image SLES15-SP7-GCE Image SLES15-SP7-GCE-3P Image SLES15-SP7-Hardened-BYOS-Azure Image SLES15-SP7-Hardened-BYOS-EC2 Image SLES15-SP7-Hardened-BYOS-GCE Image server-hub-xmlrpc-api-image Affected
Container suse/multi-linux-manager/5.1/x86_64/server-migration-14-16:5.1.2.8.13.1 Container suse/multi-linux-manager/5.1/x86_64/server-postgresql:5.1.2.6.13.1 Image proxy-salt-broker-image Image server-database-migration-image Image server-migration-14-16-image Image server-postgresql-image Affected

Share

CVE-2025-14104 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy