CVE-2025-0838
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2025-0838
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-0838.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-0838
- Downstream
- Published
- 2025-02-21T15:15:11Z
- Modified
- 2025-10-15T04:34:14Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
There exists a heap buffer overflow vulnerable in Abseil-cpp. The sized constructors, reserve(), and rehash() methods of absl::{flat,node}hash{set,map} did not impose an upper bound on their size argument. As a result, it was possible for a caller to pass a very large size that would cause an integer overflow when computing the size of the container's backing store, and a subsequent out-of-bounds memory write. Subsequent accesses to the container might also access out-of-bounds memory. We recommend upgrading past commit 5a0e2cb5e3958dd90bb8569a2766622cb74d90c1
- References
Affected packages
Git / github.com/abseil/abseil-cpp
Affected ranges
- Type
- GIT
- Repo
- https://github.com/abseil/abseil-cpp
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Database specific
vanir_signatures
[
{
"id": "CVE-2025-0838-70408d69",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"digest": {
"line_hashes": [
"302866912177723989834998072246563076676",
"108587633537507210242609878158511307392",
"168585091657632749831189831106559017445"
],
"threshold": 0.9
},
"target": {
"file": "absl/container/internal/raw_hash_set_test.cc"
},
"source": "https://github.com/abseil/abseil-cpp/commit/5a0e2cb5e3958dd90bb8569a2766622cb74d90c1"
},
{
"id": "CVE-2025-0838-73ead8f7",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"digest": {
"line_hashes": [
"196322429488803169946656567063544212150",
"120063295540870224252334452688430131419",
"107844395201159193075845461668031090738",
"214129192229071188727958629632043904028",
"209412599944108461086069608004052578352",
"339676684706118172206265814700567649220",
"250601256813417975392069456638430394339"
],
"threshold": 0.9
},
"target": {
"file": "absl/container/internal/raw_hash_set.cc"
},
"source": "https://github.com/abseil/abseil-cpp/commit/5a0e2cb5e3958dd90bb8569a2766622cb74d90c1"
},
{
"id": "CVE-2025-0838-eecf2dcc",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"digest": {
"line_hashes": [
"338669480992124172521663762393859046545",
"103420730450143868196667306456790233601",
"55368310963703604166546176273151625527",
"261183074072603629905480839093114192324",
"42852039379342248413742780251936658964",
"324290404210311186240839110500162778118",
"206857184631474550558186954382213564625",
"260986666334530949380029701212842446821",
"4314240451653420688887599635783531637",
"104509509516305631526955053225617527677",
"254517409091144281803580005759211295428",
"247382229631437902036020801246761690982",
"206094384022907040369081095671023029929",
"169930438463862701831910351909639499727",
"132577442977697908417486600047586272994",
"60093131311153041194507000092676585518",
"62400307961718354020969675025447459489",
"136324682708838925239023965547315389812",
"304723717826515129969740721341041200033",
"147520603739132135251831733954894849015",
"204793086442702716354062400985162887484",
"261061227158621016258738102405648326997",
"190267957338328497265902168936059347722"
],
"threshold": 0.9
},
"target": {
"file": "absl/container/internal/raw_hash_set.h"
},
"source": "https://github.com/abseil/abseil-cpp/commit/5a0e2cb5e3958dd90bb8569a2766622cb74d90c1"
}
]