Medium severity6.5NVD Advisory· Published Jul 10, 2025· Updated Apr 20, 2026
CVE-2025-32990
CVE-2025-32990
Description
A heap-buffer-overflow (off-by-one) flaw was found in the GnuTLS software in the template parsing logic within the certtool utility. When it reads certain settings from a template file, it allows an attacker to cause an out-of-bounds (OOB) NULL pointer write, resulting in memory corruption and a denial-of-service (DoS) that could potentially crash the system.
Affected products
7- cpe:2.3:a:redhat:openshift_container_platform:4.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
14- access.redhat.com/security/cve/CVE-2025-32990nvdVendor Advisory
- bugzilla.redhat.com/show_bug.cginvdIssue Tracking
- www.openwall.com/lists/oss-security/2025/07/11/3nvd
- access.redhat.com/errata/RHSA-2025:16115nvd
- access.redhat.com/errata/RHSA-2025:16116nvd
- access.redhat.com/errata/RHSA-2025:17181nvd
- access.redhat.com/errata/RHSA-2025:17348nvd
- access.redhat.com/errata/RHSA-2025:17361nvd
- access.redhat.com/errata/RHSA-2025:17415nvd
- access.redhat.com/errata/RHSA-2025:19088nvd
- access.redhat.com/errata/RHSA-2025:22529nvd
- access.redhat.com/errata/RHSA-2026:7477nvd
- lists.debian.org/debian-lts-announce/2025/08/msg00005.htmlnvd
- lists.gnupg.org/pipermail/gnutls-help/2025-July/004883.htmlnvd
News mentions
0No linked articles in our index yet.