{"id":"BIT-java-min-2025-7425","summary":"Libxslt: libxml2: heap use-after-free in libxslt caused by atype corruption in xmlattrptr","details":"A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may access freed memory, causing crashes or enabling attackers to trigger heap corruption.","aliases":["BIT-java-2025-7425","BIT-jre-2025-7425","CVE-2025-7425"],"modified":"2026-05-13T12:15:39.397835Z","published":"2026-05-06T14:45:51.559Z","database_specific":{"cpes":["cpe:2.3:a:bellsoft:libericajdk:*:*:*:*:*:*:*:*"],"severity":"High"},"references":[{"type":"WEB","url":"http://seclists.org/fulldisclosure/2025/Aug/0"},{"type":"WEB","url":"http://seclists.org/fulldisclosure/2025/Jul/30"},{"type":"WEB","url":"http://seclists.org/fulldisclosure/2025/Jul/32"},{"type":"WEB","url":"http://seclists.org/fulldisclosure/2025/Jul/35"},{"type":"WEB","url":"http://seclists.org/fulldisclosure/2025/Jul/37"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2025/07/11/2"},{"type":"WEB","url":"https://access.redhat.com/errata/RHBA-2025:12345"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:12447"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:12450"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:13267"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:13308"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:13309"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:13310"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:13311"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:13312"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:13313"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:13314"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:13335"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:13464"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:13622"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:14059"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:14396"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:14818"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:14819"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:14853"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:14858"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:15308"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:15672"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:15827"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:15828"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:18219"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:21885"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2025:21913"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2026:0934"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2026:11503"},{"type":"WEB","url":"https://access.redhat.com/security/cve/CVE-2025-7425"},{"type":"WEB","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2379274"},{"type":"WEB","url":"https://gitlab.gnome.org/GNOME/libxslt/-/issues/140"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/09/msg00035.html"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-7425"},{"type":"WEB","url":"https://cert-portal.siemens.com/productcert/html/ssa-032379.html"},{"type":"WEB","url":"https://cert-portal.siemens.com/productcert/html/ssa-082556.html"},{"type":"WEB","url":"https://cert-portal.siemens.com/productcert/html/ssa-265688.html"},{"type":"WEB","url":"https://cert-portal.siemens.com/productcert/html/ssa-577017.html"}],"affected":[{"package":{"name":"java-min","ecosystem":"Bitnami","purl":"pkg:bitnami/java-min"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"1.8.0"},{"introduced":"1.9.0"},{"fixed":"8.0.481"}]}],"database_specific":{"source":"https://github.com/bitnami/vulndb/tree/main/data/java-min/BIT-java-min-2025-7425.json"},"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H"}]}],"schema_version":"1.7.5"}