Red Hat libxml2 CVE-2025-12863 Use-After-Free Vulnerability

Key Information Summary CVE ID: CVE-2025-12863 Release Date: November 7, 2025 Last Modified: November 7, 2025, 20:59:27 UTC Vulnerability Description: - A flaw was discovered in the function, which is responsible for updating document pointers when XML nodes are moved between documents. Due to improper handling of namespace references, when the original document is destroyed, namespace pointers may continue to point to deallocated memory regions. This can lead to a use-after-free condition for subsequent operations using the namespace, potentially causing application crashes. Severity: Important (7.5, CVSS v3) External References: - CVE Record - NVD Details CVE Statement: - The Red Hat Product Security Team has assessed this vulnerability as High severity, as it can be triggered remotely via crafted XML content, without authentication or user interaction. Successful exploitation could cause services or applications relying on libxml2 for XML document manipulation or serialization to crash. Mitigation: - No mitigation is currently available, or available options do not meet Red Hat Product Security criteria, including usability and deployment, applicability to a broad installed base, or stability. Affected Packages: - Red Hat Enterprise Linux 10: libxml2 - Red Hat Enterprise Linux 6: libxml2 (end-of-life) - Red Hat Enterprise Linux 7: libxml2 - Red Hat Enterprise Linux 8: libxml2 - Red Hat Enterprise Linux 9: libxml2 - Red Hat JBoss Core Services: libxml2 - Red Hat OpenShift Container Platform 4: rhcos CVSS Score: - CVSS v3 Base Score: 7.5 (Red Hat) - Attack Vector: Network - Attack Complexity: Low - Required Privileges: None - User Interaction: None - Scope: Unchanged - Confidentiality Impact: None - Integrity Impact: None - Availability Impact: High - CVSS v3 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE Weakness Explanation (CWE): - CWE-416: Use-after-free - Impacts integrity, confidentiality, and availability - Technical impacts include memory modification, DoS (crash, exit, or restart), and execution of unauthorized code or commands. If the freed data is reallocated to a class, arbitrary code execution may be possible. Acknowledgments: - Red Hat thanks Ahmed Lekssays for reporting this issue.

Goal Reached Thanks to every supporter — we hit 100%!

Red Hat libxml2 CVE-2025-12863 Use-After-Free Vulnerability

More from this source