CVE-2025-45333

NameCVE-2025-45333
Descriptionberkeley-abc abc 1.1 contains a Null Pointer Dereference (NPD) vulnerability in the Abc_NtkCecFraigPart function of its data processing module, leading to unpredictable program behavior, causing segmentation faults, and program crashes.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
berkeley-abc (PTS)bullseye1.01+20191006git52a8ebb+dfsg-1vulnerable
bookworm1.01+20221019git70cb339+dfsg-4vulnerable

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
berkeley-abcsource(unstable)(unfixed)unimportant

Notes

https://github.com/berkeley-abc/abc/pull/383
Fixed by: https://github.com/berkeley-abc/abc/commit/db4a3005e31bbc9438e1b2ee1b3a610259a55e64
No security impact, crash in CLI tool

Search for package or bug name: Reporting problems