CVE-2025-5222 | THREATINT

Description

A stack buffer overflow was found in Internationl components for unicode (ICU ). While running the genrb binary, the 'subtag' struct overflowed at the SRBRoot::addTag function. This issue may lead to memory corruption and local arbitrary code execution.

PUBLISHED Reserved 2025-05-26 | Published 2025-05-27 | Updated 2026-04-22 | Assigner redhat

HIGH: 7.0CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Problem types

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Product status

Default status

unaffected

Any version before 78.1

affected

Default status

affected

0:74.2-5.el10_0 (rpm) before *

unaffected

Default status

affected

0:67.1-10.el9_6 (rpm) before *

unaffected

Default status

affected

0:67.1-10.el9_6 (rpm) before *

unaffected

Default status

affected

0:67.1-10.el9_0 (rpm) before *

unaffected

Default status

affected

0:67.1-10.el9_2 (rpm) before *

unaffected

Default status

affected

0:67.1-10.el9_4 (rpm) before *

unaffected

Default status

unknown

Default status

unknown

Default status

affected

Default status

affected

Default status

affected

Timeline

2025-05-26:	Reported to Red Hat.
2024-11-14:	Made public.

References

lists.debian.org/debian-lts-announce/2025/06/msg00015.html

access.redhat.com/errata/RHSA-2025:11888 (RHSA-2025:11888) vendor-advisory

access.redhat.com/errata/RHSA-2025:12083 (RHSA-2025:12083) vendor-advisory

access.redhat.com/errata/RHSA-2025:12331 (RHSA-2025:12331) vendor-advisory

access.redhat.com/errata/RHSA-2025:12332 (RHSA-2025:12332) vendor-advisory

access.redhat.com/errata/RHSA-2025:12333 (RHSA-2025:12333) vendor-advisory

access.redhat.com/security/cve/CVE-2025-5222 vdb-entry

bugzilla.redhat.com/show_bug.cgi?id=2368600 (RHBZ#2368600) issue-tracking

unicode-org.atlassian.net/...c/projects/ICU/issues/ICU-22957

cve.org (CVE-2025-5222)

nvd.nist.gov (CVE-2025-5222)

Download JSON

help @ threatint.eu