CVE-2025-6021

Libxml2: integer overflow in xmlbuildqname() leads to stack buffer overflow in libxml2

Published: 6/12/2025 Last updated: 5/12/2026 Reserved: 6/12/2025

A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Metrics

Version	Score	Severity	Vector String
3.1	7.5	High	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Opam packages affected (5)

bap-llvm conf-gtksourceview conf-gtksourceview3 conf-librsvg2 lablgtk3-gtkspell3

Products affected (54)

Product	Vendor	Version
Red Hat Discovery 2	Red Hat	RAPIDPoint 500 systems : All versions >= V3.0 _with_ Siemens Healthineers Informatics products
Red Hat Discovery 2	Red Hat	7.1.2
Red Hat Insights proxy 1.5	Red Hat	n/a
Red Hat Insights proxy 1.5	Red Hat	Adobe Acrobat Reader 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier.
Red Hat Enterprise Linux 8.8 Telecommunications Update Service	Red Hat	n/a
Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions	Red Hat	Earlier than 2.0.16.3
Red Hat Enterprise Linux 9	Red Hat	10.0
Red Hat Enterprise Linux 9	Red Hat	10.0.1
Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions	Red Hat	10.1
Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions	Red Hat	10.1.2
Red Hat Enterprise Linux 9.4 Extended Update Support	Red Hat	10.1.3
Red Hat JBoss Core Services 2.4.62.SP2	Red Hat	n/a
Red Hat JBoss Core Services 2.4.62.SP2	Red Hat	n/a
Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support	Red Hat	ChakraCore
Red Hat Enterprise Linux 8.6 Telecommunications Update Service	Red Hat	The versions before MHA-AL00B 8.0.0.334(C00)
Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions	Red Hat	The versions before LON-AL00B 8.0.0.334(C00)
Red Hat Enterprise Linux 10	Red Hat	>= 5.2.1 <= 6.0.0 \|\| >=6.0.0 <= 6.0.2
Red Hat Enterprise Linux 7 Extended Lifecycle Support	Red Hat	n/a
Red Hat Enterprise Linux 8	Red Hat	13.0.0
Red Hat Enterprise Linux 8	Red Hat	12.0.0-12.1.3.1
Red Hat Enterprise Linux 8.2 Advanced Update Support	Red Hat	11.6.1-11.6.2
Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support	Red Hat	11.5.1-11.5.5
		< publication
Red Hat Enterprise Linux 10	Red Hat	< publication
Red Hat Enterprise Linux 7 Extended Lifecycle Support	Red Hat	n/a
Red Hat Enterprise Linux 8	Red Hat	< 57
Red Hat Enterprise Linux 8	Red Hat	n/a
Red Hat Enterprise Linux 8.2 Advanced Update Support	Red Hat	before version 0.27.3
Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support	Red Hat	n/a
Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions	Red Hat	All versions
Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions	Red Hat	n/a
Red Hat Enterprise Linux 9.4 Extended Update Support	Red Hat	Version 6.0.2
Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On	Red Hat	U.motion Builder Versions 1.2.1 and prior.
Red Hat Enterprise Linux 6	Red Hat	< 18.1R4
Red Hat Enterprise Linux 6	Red Hat	n/a
		< 52.4
Red Hat Hardened Images	Red Hat	8.0
Red Hat Hardened Images	Red Hat	RAPIDPoint 400 systems : All versions_with_ Siemens Healthineers Informatics products
Red Hat OpenShift Container Platform 4.18	Red Hat	7.0
Red Hat OpenShift Container Platform 4.19	Red Hat	7.1.1
Red Hat OpenShift Container Platform 4.15	Red Hat	firmware version 1.01.02 and earlier
Red Hat OpenShift Container Platform 4.14	Red Hat	2.9
Red Hat OpenShift Container Platform 4.15	Red Hat	< 3.2.19
Red Hat OpenShift Container Platform 4.16	Red Hat	< 8.5.47.A
Red Hat OpenShift Container Platform 4.17	Red Hat	< 8.5.47.A
Red Hat OpenShift Container Platform 4.18	Red Hat	Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, and 56.0.2924.87 for Android
Red Hat OpenShift Container Platform 4.19	Red Hat	RAPIDLab 1200 Series : All versions < V3.3 _with_ Siemens Healthineers Informatics products
Red Hat OpenShift Container Platform 4.13	Red Hat	2.8
Red Hat OpenShift Container Platform 4.12	Red Hat	Adobe Acrobat Reader 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier.
Red Hat OpenShift Container Platform 4.12	Red Hat	n/a
Red Hat OpenShift Container Platform 4.13	Red Hat	n/a
Red Hat OpenShift Container Platform 4.16	Red Hat	firmware version 1.01.02 and earlier
Red Hat OpenShift Container Platform 4.14	Red Hat	n/a
Red Hat OpenShift Container Platform 4.17	Red Hat	6.0.1

References (58)

Credits (2)

Red Hat would like to thank Ahmed Lekssays for reporting this issue.
Red Hat would like to thank Ahmed Lekssays for reporting this issue.