High severity7.8NVD Advisory· Published Jul 10, 2025· Updated Jun 29, 2026
CVE-2025-7425
CVE-2025-7425
Description
A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may access freed memory, causing crashes or enabling attackers to trigger heap corruption.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
99- osv-coords98 versionspkg:apk/chainguard/openjdk-11-openj9pkg:apk/chainguard/openjdk-11-openj9-dbgpkg:apk/chainguard/openjdk-11-openj9-default-jdkpkg:apk/chainguard/openjdk-11-openj9-default-jvmpkg:apk/chainguard/openjdk-11-openj9-docpkg:apk/chainguard/openjdk-11-openj9-jmodspkg:apk/chainguard/openjdk-11-openj9-jrepkg:apk/chainguard/openjdk-17-openj9pkg:apk/chainguard/openjdk-17-openj9-dbgpkg:apk/chainguard/openjdk-17-openj9-default-jdkpkg:apk/chainguard/openjdk-17-openj9-default-jvmpkg:apk/chainguard/openjdk-17-openj9-docpkg:apk/chainguard/openjdk-17-openj9-jmodspkg:apk/chainguard/openjdk-17-openj9-jrepkg:apk/chainguard/openjdk-21-openj9pkg:apk/chainguard/openjdk-21-openj9-dbgpkg:apk/chainguard/openjdk-21-openj9-default-jdkpkg:apk/chainguard/openjdk-21-openj9-default-jvmpkg:apk/chainguard/openjdk-21-openj9-docpkg:apk/chainguard/openjdk-21-openj9-jmodspkg:apk/chainguard/openjdk-21-openj9-jrepkg:apk/chainguard/openjdk-25-openj9pkg:apk/chainguard/openjdk-25-openj9-dbgpkg:apk/chainguard/openjdk-25-openj9-default-jdkpkg:apk/chainguard/openjdk-25-openj9-default-jvmpkg:apk/chainguard/openjdk-25-openj9-jmodspkg:apk/chainguard/openjdk-25-openj9-jrepkg:apk/chainguard/openjdk-26-openj9pkg:apk/chainguard/openjdk-26-openj9-dbgpkg:apk/chainguard/openjdk-26-openj9-default-jdkpkg:apk/chainguard/openjdk-26-openj9-default-jvmpkg:apk/chainguard/openjdk-26-openj9-jmodspkg:apk/chainguard/openjdk-26-openj9-jrepkg:apk/chainguard/openjdk-8-openj9pkg:apk/chainguard/openjdk-8-openj9-dbgpkg:apk/chainguard/openjdk-8-openj9-default-jdkpkg:apk/chainguard/openjdk-8-openj9-default-jvmpkg:apk/chainguard/openjdk-8-openj9-docpkg:apk/chainguard/openjdk-8-openj9-jrepkg:bitnami/javapkg:bitnami/java-minpkg:bitnami/jrepkg:rpm/almalinux/libxml2pkg:rpm/almalinux/libxml2-develpkg:rpm/almalinux/python3-libxml2pkg:rpm/opensuse/libxml2&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/libxml2&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/libxml2-python&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/python-libxml2-python&distro=openSUSE%20Leap%2015.6pkg:rpm/suse/libxml2&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOSpkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSSpkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20Micro%205.1pkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20Micro%205.2pkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20Micro%205.5pkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6pkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7pkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSSpkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSSpkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5pkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5pkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Micro%206.0pkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Micro%206.1pkg:rpm/suse/libxml2&distro=SUSE%20Manager%20Proxy%20LTS%204.3pkg:rpm/suse/libxml2&distro=SUSE%20Manager%20Server%20LTS%204.3pkg:rpm/suse/libxml2-python&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/libxml2-python&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/libxml2-python&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOSpkg:rpm/suse/libxml2-python&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSSpkg:rpm/suse/libxml2-python&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/libxml2-python&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/libxml2-python&distro=SUSE%20Linux%20Enterprise%20Micro%205.5pkg:rpm/suse/libxml2-python&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6pkg:rpm/suse/libxml2-python&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7pkg:rpm/suse/libxml2-python&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%203%2015%20SP6pkg:rpm/suse/libxml2-python&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%203%2015%20SP7pkg:rpm/suse/libxml2-python&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/libxml2-python&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSSpkg:rpm/suse/libxml2-python&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/libxml2-python&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5pkg:rpm/suse/libxml2-python&distro=SUSE%20Manager%20Proxy%20LTS%204.3pkg:rpm/suse/libxml2-python&distro=SUSE%20Manager%20Server%20LTS%204.3pkg:rpm/suse/python-libxml2&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSSpkg:rpm/suse/python-libxml2&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5pkg:rpm/suse/python-libxml2-python&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/python-libxml2-python&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/python-libxml2-python&distro=SUSE%20Linux%20Enterprise%20Micro%205.2pkg:rpm/suse/python-libxml2-python&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/python-libxml2-python&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3
< 0.59.0-r2+ 97 more
- (no CPE)range: < 0.59.0-r2
- (no CPE)range: < 0.59.0-r2
- (no CPE)range: < 0.59.0-r2
- (no CPE)range: < 0.59.0-r2
- (no CPE)range: < 0.59.0-r2
- (no CPE)range: < 0.59.0-r2
- (no CPE)range: < 0.59.0-r2
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 0.59.0-r1
- (no CPE)range: < 1.8.0
- (no CPE)range: < 1.8.0
- (no CPE)range: < 1.8.0
- (no CPE)range: < 2.9.13-11.el9_6
- (no CPE)range: < 2.9.13-11.el9_6
- (no CPE)range: < 2.9.13-11.el9_6
- (no CPE)range: < 2.10.3-150500.5.32.1
- (no CPE)range: < 2.13.8-3.1
- (no CPE)range: < 2.10.3-150500.5.32.1
- (no CPE)range: < 2.9.7-150000.3.85.1
- (no CPE)range: < 2.9.7-150000.3.85.1
- (no CPE)range: < 2.9.7-150000.3.85.1
- (no CPE)range: < 2.9.14-150400.5.47.1
- (no CPE)range: < 2.9.14-150400.5.47.1
- (no CPE)range: < 2.10.3-150500.5.32.1
- (no CPE)range: < 2.10.3-150500.5.32.1
- (no CPE)range: < 2.9.7-150000.3.85.1
- (no CPE)range: < 2.9.7-150000.3.85.1
- (no CPE)range: < 2.9.14-150400.5.47.1
- (no CPE)range: < 2.9.14-150400.5.47.1
- (no CPE)range: < 2.10.3-150500.5.32.1
- (no CPE)range: < 2.10.3-150500.5.32.1
- (no CPE)range: < 2.12.10-150700.4.6.1
- (no CPE)range: < 2.9.4-46.90.1
- (no CPE)range: < 2.9.7-150000.3.85.1
- (no CPE)range: < 2.9.14-150400.5.47.1
- (no CPE)range: < 2.10.3-150500.5.32.1
- (no CPE)range: < 2.9.7-150000.3.85.1
- (no CPE)range: < 2.9.14-150400.5.47.1
- (no CPE)range: < 2.10.3-150500.5.32.1
- (no CPE)range: < 2.9.4-46.90.1
- (no CPE)range: < 2.11.6-10.1
- (no CPE)range: < 2.11.6-slfo.1.1_6.1
- (no CPE)range: < 2.9.14-150400.5.47.1
- (no CPE)range: < 2.9.14-150400.5.47.1
- (no CPE)range: < 2.9.14-150400.5.47.1
- (no CPE)range: < 2.9.14-150400.5.47.1
- (no CPE)range: < 2.10.3-150500.5.32.1
- (no CPE)range: < 2.10.3-150500.5.32.1
- (no CPE)range: < 2.9.14-150400.5.47.1
- (no CPE)range: < 2.9.14-150400.5.47.1
- (no CPE)range: < 2.10.3-150500.5.32.1
- (no CPE)range: < 2.10.3-150500.5.32.1
- (no CPE)range: < 2.12.10-150700.4.6.1
- (no CPE)range: < 2.10.3-150500.5.32.1
- (no CPE)range: < 2.12.10-150700.4.6.1
- (no CPE)range: < 2.9.14-150400.5.47.1
- (no CPE)range: < 2.10.3-150500.5.32.1
- (no CPE)range: < 2.9.14-150400.5.47.1
- (no CPE)range: < 2.10.3-150500.5.32.1
- (no CPE)range: < 2.9.14-150400.5.47.1
- (no CPE)range: < 2.9.14-150400.5.47.1
- (no CPE)range: < 2.9.4-46.90.1
- (no CPE)range: < 2.9.4-46.90.1
- (no CPE)range: < 2.9.7-150000.3.85.1
- (no CPE)range: < 2.9.7-150000.3.85.1
- (no CPE)range: < 2.9.7-150000.3.85.1
- (no CPE)range: < 2.9.7-150000.3.85.1
- (no CPE)range: < 2.9.7-150000.3.85.1
Patches
Vulnerability mechanics
References
43- seclists.org/fulldisclosure/2025/Aug/0nvd
- seclists.org/fulldisclosure/2025/Jul/30nvd
- seclists.org/fulldisclosure/2025/Jul/32nvd
- seclists.org/fulldisclosure/2025/Jul/35nvd
- seclists.org/fulldisclosure/2025/Jul/37nvd
- www.openwall.com/lists/oss-security/2025/07/11/2nvd
- access.redhat.com/errata/RHBA-2025:12345nvd
- access.redhat.com/errata/RHSA-2025:12447nvd
- access.redhat.com/errata/RHSA-2025:12450nvd
- access.redhat.com/errata/RHSA-2025:13267nvd
- access.redhat.com/errata/RHSA-2025:13308nvd
- access.redhat.com/errata/RHSA-2025:13309nvd
- access.redhat.com/errata/RHSA-2025:13310nvd
- access.redhat.com/errata/RHSA-2025:13311nvd
- access.redhat.com/errata/RHSA-2025:13312nvd
- access.redhat.com/errata/RHSA-2025:13313nvd
- access.redhat.com/errata/RHSA-2025:13314nvd
- access.redhat.com/errata/RHSA-2025:13335nvd
- access.redhat.com/errata/RHSA-2025:13464nvd
- access.redhat.com/errata/RHSA-2025:13622nvd
- access.redhat.com/errata/RHSA-2025:14059nvd
- access.redhat.com/errata/RHSA-2025:14396nvd
- access.redhat.com/errata/RHSA-2025:14818nvd
- access.redhat.com/errata/RHSA-2025:14819nvd
- access.redhat.com/errata/RHSA-2025:14853nvd
- access.redhat.com/errata/RHSA-2025:14858nvd
- access.redhat.com/errata/RHSA-2025:15308nvd
- access.redhat.com/errata/RHSA-2025:15672nvd
- access.redhat.com/errata/RHSA-2025:15827nvd
- access.redhat.com/errata/RHSA-2025:15828nvd
- access.redhat.com/errata/RHSA-2025:18219nvd
- access.redhat.com/errata/RHSA-2025:21885nvd
- access.redhat.com/errata/RHSA-2025:21913nvd
- access.redhat.com/errata/RHSA-2026:0934nvd
- access.redhat.com/errata/RHSA-2026:11503nvd
- access.redhat.com/security/cve/CVE-2025-7425nvd
- bugzilla.redhat.com/show_bug.cginvd
- cert-portal.siemens.com/productcert/html/ssa-032379.htmlnvd
- cert-portal.siemens.com/productcert/html/ssa-082556.htmlnvd
- cert-portal.siemens.com/productcert/html/ssa-265688.htmlnvd
- cert-portal.siemens.com/productcert/html/ssa-577017.htmlnvd
- gitlab.gnome.org/GNOME/libxslt/-/issues/140nvd
- lists.debian.org/debian-lts-announce/2025/09/msg00035.htmlnvd
News mentions
2- Siemens Ruggedcom RoxCISA ICS Advisories
- Siemens SIMATICCISA ICS Advisories