CNNVD-202512-5089 Information

CNNVD ID

CNNVD-202512-5089

Related CVE

CVE-2025-65409

• CNNVD Published: 2025-12-30

Description (Chinese)

GNU Recutils是美国GNU社区的一款用于访问recfiles纯文本数据库的工具和库。 GNU Recutils存在安全漏洞，该漏洞源于加密/解密例程中存在除零错误，可能导致拒绝服务攻击。

Description (English)

GNU Recutils is a tool and library for access to the pure text database of the GNU community in the United States. There is a security loophole in GNU Recutils, which stems from zero-missing errors in the encryption/declassification process, which may lead to a denial of service attack.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

GNU

Published

2025-12-30

Last Modified

2026-02-24

References

http://ftp.gnu.org/gnu/recutils/ https://github.com/MAXEUR5/Vulnerability_Disclosures/blob/main/2025/CVE-2025-65409.md https://lists.gnu.org/archive/html/bug-recutils/2025-10/msg00004.html https://www.gnu.org/software/recutils/

Patch

https://www.gnu.org/software/recutils/