| Name | CVE-2025-45333 |
| Description | berkeley-abc abc 1.1 contains a Null Pointer Dereference (NPD) vulnerability in the Abc_NtkCecFraigPart function of its data processing module, leading to unpredictable program behavior, causing segmentation faults, and program crashes. |
| Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
Vulnerable and fixed packages
The table below lists information on source packages.
| Source Package | Release | Version | Status |
|---|
| berkeley-abc (PTS) | bullseye | 1.01+20191006git52a8ebb+dfsg-1 | vulnerable |
| bookworm | 1.01+20221019git70cb339+dfsg-4 | vulnerable |
The information below is based on the following data on fixed versions.
| Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
|---|
| berkeley-abc | source | (unstable) | (unfixed) | unimportant | | |
Notes
https://github.com/berkeley-abc/abc/pull/383
Fixed by: https://github.com/berkeley-abc/abc/commit/db4a3005e31bbc9438e1b2ee1b3a610259a55e64
No security impact, crash in CLI tool