ALT-PU-2025-7656-1
Package augeas updated to version 1.14.1-alt2 for branch sisyphus_loongarch64.
Closed vulnerabilities
Published: 2025-03-21
Modified: 2025-04-01
Modified: 2025-04-01
CVE-2025-2588
A vulnerability has been found in Hercules Augeas 1.14.1 and classified as problematic. This vulnerability affects the function re_case_expand of the file src/fa.c. The manipulation of the argument re leads to null pointer dereference. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used.
Severity: LOW (3.3)
Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
References:
- https://github.com/hercules-team/augeas/issues/852
- https://github.com/hercules-team/augeas/issues/852#issue-2905999609
- https://github.com/hercules-team/augeas/issues/852#issue-2905999609
- VDB-300568 | CTI Indicators (IOB, IOC, IOA)
- VDB-300568 | Hercules Augeas fa.c re_case_expand null pointer dereference
- Submit #517281 | https://github.com/hercules-team/augeas augeas 1.14.1 NULL Pointer Dereference