CNNVD-202512-5088 Information

CNNVD ID

CNNVD-202512-5088

Related CVE

CVE-2025-65411

• CNNVD Published: 2025-12-30

Description (Chinese)

GNU Unrtf是美国GNU社区的一个文档格式转换工具。 GNU Unrtf存在安全漏洞，该漏洞源于src/path.c组件存在空指针取消引用，可能导致拒绝服务攻击。

Description (English)

GNU Unrtf is a document formatting tool for the GNU community in the United States. There is a security loophole in GNU Unrtf, which stems from the empty pointer unquoted in the src/path.c component, which could lead to a denial of service attack.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

GNU

Published

2025-12-30

Last Modified

2026-02-24

References

https://github.com/MAXEUR5/Vulnerability_Disclosures/blob/main/2025/CVE-2025-65411.md https://lists.gnu.org/archive/html/bug-unrtf/2025-11/msg00000.html https://savannah.gnu.org/projects/unrtf/ https://sources.debian.org/src/unrtf/0.21.10-clean-1/src/main.c/#L661 https://www.gnu.org/software/unrtf/