CVE-2025-32990

Gnutls: vulnerability in gnutls certtool template parsing

Description

A heap-buffer-overflow (off-by-one) flaw was found in the GnuTLS software in the template parsing logic within the certtool utility. When it reads certain settings from a template file, it allows an attacker to cause an out-of-bounds (OOB) NULL pointer write, resulting in memory corruption and a denial-of-service (DoS) that could potentially crash the system.

INFO

Published Date :

2025-07-10T09:41:46.211Z

Last Modified :

2026-04-20T21:35:30.314Z

Source :

redhat

AFFECTED PRODUCTS

The following products are affected by CVE-2025-32990 vulnerability.

Vendors	Products
Gnu	Gnutls
Redhat	Ceph Storage Discovery Enterprise Linux Hummingbird Insights Proxy Openshift Openshift Container Platform Rhel E4s Rhel Eus

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-32990.

URL	Resource
http://www.openwall.com/lists/oss-security/2025/07/11/3
https://access.redhat.com/errata/RHSA-2025:16115
https://access.redhat.com/errata/RHSA-2025:16116
https://access.redhat.com/errata/RHSA-2025:17181
https://access.redhat.com/errata/RHSA-2025:17348
https://access.redhat.com/errata/RHSA-2025:17361
https://access.redhat.com/errata/RHSA-2025:17415
https://access.redhat.com/errata/RHSA-2025:19088
https://access.redhat.com/errata/RHSA-2025:22529
https://access.redhat.com/errata/RHSA-2026:7477
https://access.redhat.com/security/cve/CVE-2025-32990
https://bugzilla.redhat.com/show_bug.cgi?id=2359620
https://lists.debian.org/debian-lts-announce/2025/08/msg00005.html
https://lists.gnupg.org/pipermail/gnutls-help/2025-July/004883.html
https://nvd.nist.gov/vuln/detail/CVE-2025-32990
https://www.cve.org/CVERecord?id=CVE-2025-32990

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact