ELS for OS
- CVEs
- Releases
- Projects
- Documentation
Live Patches
ELS for PHP
- CVEs
- Releases
- Projects
- Documentation
ELS for Python
- CVEs
- Releases
- Projects
- Documentation
ELS for Dotnet
- CVEs
- Releases
- Projects
- Documentation
ELS for Node.js
- CVEs
- Releases
- Projects
- Documentation

CVE-2025-6021

Updated: 2026-02-08 03:17:49.061832

Description:

A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input.

Links	NIST	CIRCL	RHEL	Ubuntu

Severity

	Severity	Score
CVSS Version 2.x	NONE	0.0
CVSS Version 3.x	HIGH	7.5

Status

OS name	Project name	Version	Score	Severity	Status	Errata	Last updated
AlmaLinux 9.2 ESU	libxml2	2.9.13	7.5	HIGH	Released	CLSA-2025:1752747463	2025-07-18 02:05:54
Alpine Linux 3.18 ELS	libxml2	2.11.8	7.5	HIGH	Released	CLSA-2025:1766049056	2025-12-19 04:59:36
CentOS 6 ELS	libxml2	2.7.6	7.5	HIGH	Released	CLSA-2025:1759336759	2025-10-13 19:19:13
CentOS 7 ELS	libxml2	2.9.1	7.5	HIGH	Released	CLSA-2025:1757427923	2025-09-24 17:03:16
CentOS 8.4 ELS	libxml2	2.9.7-9	7.5	HIGH	Released	CLSA-2025:1752654760	2025-07-17 03:00:11
CentOS 8.5 ELS	libxml2	2.9.7-9	7.5	HIGH	Released	CLSA-2025:1752655171	2025-07-17 03:00:10
CentOS Stream 8 ELS	libxml2	2.9.7	7.5	HIGH	Released	CLSA-2025:1752654590	2025-07-17 03:00:12
CloudLinux 7 ELS	libxml2	2.9.1	7.5	HIGH	Released	CLSA-2025:1757428021	2025-09-23 18:40:20
Oracle Linux 6 ELS	libxml2	2.7.6	7.5	HIGH	Released	CLSA-2025:1759332050	2025-10-02 01:22:03
Oracle Linux 7 ELS	libxml2	2.9.1	7.5	HIGH	Released	CLSA-2025:1757415450	2025-09-09 15:28:16

Total: 14