CVE-2025-49794 CRITICAL

Published: 2025-06-16 | Last Modified: 2026-06-02 | Status: Deferred

Description

A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the <sch:name path="..."/> schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program's crash using libxml or other possible undefined behaviors.

Additional Descriptions (1)

Se detectó una vulnerabilidad de use-after-free en libxml2. Este problema se produce al analizar elementos XPath en ciertas circunstancias cuando el esquema XML contiene los elementos de esquema . Esta falla permite a un actor malicioso manipular un documento XML malicioso que se utiliza como entrada para libxml, lo que provoca el bloqueo del programa al usar libxml u otros posibles comportamientos indefinidos.

CVSS Metrics

Base Score: 9.1 (CRITICAL)

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Attack Vector	NETWORK
Attack Complexity	LOW
Privileges Required	NONE
User Interaction	NONE
Scope	UNCHANGED
Confidentiality Impact	NONE
Integrity Impact	HIGH
Availability Impact	HIGH

Source: [email protected]

Type: Secondary

Exploitability Score: 3.9

Impact Score: 5.2

Weaknesses

Source	Type	Description
[email protected]	Secondary	en CWE-825

References

https://access.redhat.com/errata/RHSA-2025:10630
Source: [email protected]
https://access.redhat.com/errata/RHSA-2025:10698
Source: [email protected]
https://access.redhat.com/errata/RHSA-2025:10699
Source: [email protected]
https://access.redhat.com/errata/RHSA-2025:11580
Source: [email protected]
https://access.redhat.com/errata/RHSA-2025:12098
Source: [email protected]
https://access.redhat.com/errata/RHSA-2025:12099
Source: [email protected]
https://access.redhat.com/errata/RHSA-2025:12199
Source: [email protected]
https://access.redhat.com/errata/RHSA-2025:12237
Source: [email protected]
https://access.redhat.com/errata/RHSA-2025:12239
Source: [email protected]
https://access.redhat.com/errata/RHSA-2025:12240
Source: [email protected]
https://access.redhat.com/errata/RHSA-2025:12241
Source: [email protected]
https://access.redhat.com/errata/RHSA-2025:13335
Source: [email protected]
https://access.redhat.com/errata/RHSA-2025:15397
Source: [email protected]
https://access.redhat.com/errata/RHSA-2025:15827
Source: [email protected]
https://access.redhat.com/errata/RHSA-2025:15828
Source: [email protected]
https://access.redhat.com/errata/RHSA-2025:18217
Source: [email protected]
https://access.redhat.com/errata/RHSA-2025:18218
Source: [email protected]
https://access.redhat.com/errata/RHSA-2025:18219
Source: [email protected]
https://access.redhat.com/errata/RHSA-2025:18240
Source: [email protected]
https://access.redhat.com/errata/RHSA-2025:19020
Source: [email protected]
https://access.redhat.com/errata/RHSA-2025:19041
Source: [email protected]
https://access.redhat.com/errata/RHSA-2025:19046
Source: [email protected]
https://access.redhat.com/errata/RHSA-2025:19894
Source: [email protected]
https://access.redhat.com/errata/RHSA-2025:21913
Source: [email protected]
https://access.redhat.com/errata/RHSA-2026:0934
Source: [email protected]
https://access.redhat.com/errata/RHSA-2026:7519
Source: [email protected]
https://access.redhat.com/security/cve/CVE-2025-49794
Source: [email protected]
https://bugzilla.redhat.com/show_bug.cgi?id=2372373
Source: [email protected]
https://gitlab.gnome.org/GNOME/libxml2/-/issues/931
Source: [email protected]
https://lists.debian.org/debian-lts-announce/2025/07/msg00014.html
Source: af854a3a-2127-422b-91ae-364da2661108
https://cert-portal.siemens.com/productcert/html/ssa-253495.html
Source: 0b142b55-0307-4c5a-b3c9-f314f3fb7c5e
https://cert-portal.siemens.com/productcert/html/ssa-577017.html
Source: 0b142b55-0307-4c5a-b3c9-f314f3fb7c5e