High severity7.5NVD Advisory· Published Jun 12, 2025· Updated May 12, 2026

CVE-2025-6021

Description

A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input.

Affected products

Red Hat/Jboss Core Services
cpe:2.3:a:redhat:jboss_core_services:-:*:*:*:*:*:*:*
Red Hat/Openshift Container Platform7 versions
cpe:2.3:a:redhat:openshift_container_platform:4.12:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:redhat:openshift_container_platform:4.12:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform:4.13:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform:4.14:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform:4.15:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform:4.16:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform:4.17:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform:4.18:*:*:*:*:*:*:*
Red Hat/Openshift Container Platform For Arm646 versions
cpe:2.3:a:redhat:openshift_container_platform_for_arm64:4.13:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:redhat:openshift_container_platform_for_arm64:4.13:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform_for_arm64:4.14:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform_for_arm64:4.15:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform_for_arm64:4.16:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform_for_arm64:4.17:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform_for_arm64:4.18:*:*:*:*:*:*:*
Red Hat/Openshift Container Platform For Ibm Z6 versions
cpe:2.3:a:redhat:openshift_container_platform_for_ibm_z:4.13:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:redhat:openshift_container_platform_for_ibm_z:4.13:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform_for_ibm_z:4.14:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform_for_ibm_z:4.15:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform_for_ibm_z:4.16:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform_for_ibm_z:4.17:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform_for_ibm_z:4.18:*:*:*:*:*:*:*
Red Hat/Openshift Container Platform For Linuxone6 versions
cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.13:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.13:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.14:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.15:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.16:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.17:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.18:*:*:*:*:*:*:*
Red Hat/Openshift Container Platform For Power6 versions
cpe:2.3:a:redhat:openshift_container_platform_for_power:4.13:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:redhat:openshift_container_platform_for_power:4.13:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform_for_power:4.14:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform_for_power:4.15:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform_for_power:4.16:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform_for_power:4.17:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:openshift_container_platform_for_power:4.18:*:*:*:*:*:*:*
Xmlsoft/Libxml2
cpe:2.3:a:xmlsoft:libxml2:*:*:*:*:*:*:*:*
Range: <2.14.4
Red Hat/Enterprise Linux3 versions
cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
Red Hat/Enterprise Linux Eus6 versions
cpe:2.3:o:redhat:enterprise_linux_eus:10.0:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:o:redhat:enterprise_linux_eus:10.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_eus:8.6:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_eus:8.8:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_eus:9.4:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_eus:9.6:*:*:*:*:*:*:*
Red Hat/Enterprise Linux For Arm 644 versions
cpe:2.3:o:redhat:enterprise_linux_for_arm_64:10.0_aarch64:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:o:redhat:enterprise_linux_for_arm_64:10.0_aarch64:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_for_arm_64:8.0_aarch64:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_for_arm_64:9.0_aarch64:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_for_arm_64:9.4_aarch64:*:*:*:*:*:*:*
Red Hat/Enterprise Linux For Arm 64 Eus3 versions
cpe:2.3:o:redhat:enterprise_linux_for_arm_64_eus:10.0_aarch64:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:redhat:enterprise_linux_for_arm_64_eus:10.0_aarch64:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_for_arm_64_eus:9.4_aarch64:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_for_arm_64_eus:9.6_aarch64:*:*:*:*:*:*:*
Red Hat/Enterprise Linux For Ibm Z Systems3 versions
cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:10.0_s390x:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:10.0_s390x:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:8.0_s390x:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:9.4_s390x:*:*:*:*:*:*:*
Red Hat/Enterprise Linux For Ibm Z Systems Eus4 versions
cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:10.0_s390x:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:10.0_s390x:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:9.0_s390x:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:9.4_s390x:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:9.6_s390x:*:*:*:*:*:*:*
Red Hat/Enterprise Linux For Power Little Endian3 versions
cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:10.0_ppc64le:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:10.0_ppc64le:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:8.0_ppc64le:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:9.0_ppc64le:*:*:*:*:*:*:*
Red Hat/Enterprise Linux For Power Little Endian Eus3 versions
cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:10.0_ppc64le:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:10.0_ppc64le:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:9.4_ppc64le:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:9.6_ppc64le:*:*:*:*:*:*:*
Red Hat/Enterprise Linux Server
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
Red Hat/Enterprise Linux Server Aus6 versions
cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server_aus:9.2:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server_aus:9.4:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server_aus:9.6:*:*:*:*:*:*:*
Red Hat/Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions
cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:9.4_ppc64le:*:*:*:*:*:*:*
Red Hat/Enterprise Linux Server Tus
cpe:2.3:o:redhat:enterprise_linux_server_tus:8.8:*:*:*:*:*:*:*
Red Hat/In Vehicle Operating System
cpe:2.3:o:redhat:in-vehicle_operating_system:1.0:*:*:*:*:*:*:*

Patches

4c6b2c3096b1

https://gitlab.gnome.org/GNOME/libxml2via osv

Vulnerability mechanics

Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

gitlab.gnome.org/GNOME/libxml2/-/issues/926nvdExploitIssue TrackingVendor Advisory
access.redhat.com/errata/RHSA-2025:10630nvdThird Party Advisory
access.redhat.com/errata/RHSA-2025:10698nvdThird Party Advisory
access.redhat.com/errata/RHSA-2025:10699nvdThird Party Advisory
access.redhat.com/errata/RHSA-2025:11580nvdThird Party Advisory
access.redhat.com/errata/RHSA-2025:12098nvdThird Party Advisory
access.redhat.com/errata/RHSA-2025:12099nvdThird Party Advisory
access.redhat.com/errata/RHSA-2025:12199nvdThird Party Advisory
access.redhat.com/errata/RHSA-2025:12237nvdThird Party Advisory
access.redhat.com/errata/RHSA-2025:12239nvdThird Party Advisory
access.redhat.com/errata/RHSA-2025:12240nvdThird Party Advisory
access.redhat.com/errata/RHSA-2025:12241nvdThird Party Advisory
access.redhat.com/errata/RHSA-2025:13267nvdThird Party Advisory
access.redhat.com/errata/RHSA-2025:13289nvdThird Party Advisory
access.redhat.com/errata/RHSA-2025:13325nvdThird Party Advisory
access.redhat.com/errata/RHSA-2025:13335nvdThird Party Advisory
access.redhat.com/errata/RHSA-2025:13336nvdThird Party Advisory
access.redhat.com/errata/RHSA-2025:14059nvdThird Party Advisory
access.redhat.com/errata/RHSA-2025:14396nvdThird Party Advisory
access.redhat.com/errata/RHSA-2025:15308nvdThird Party Advisory
access.redhat.com/errata/RHSA-2025:15672nvdThird Party Advisory
access.redhat.com/security/cve/CVE-2025-6021nvdThird Party Advisory
bugzilla.redhat.com/show_bug.cginvdIssue Tracking
access.redhat.com/errata/RHSA-2025:11673nvd
access.redhat.com/errata/RHSA-2025:19020nvd
access.redhat.com/errata/RHSA-2026:7519nvd
cert-portal.siemens.com/productcert/html/ssa-032379.htmlnvd
lists.debian.org/debian-lts-announce/2025/07/msg00014.htmlnvd

News mentions

Siemens SIMATIC
CISA Alerts

cvss	0.488
epss	0.002
exploit	0.000
kev	0.000
patch	-0.070
ransomware	0.000