CVE-2025-6196

A flaw was found in libgepub, a library used to read EPUB files. The software mishandles file size calculations when opening specially crafted EPUB files, leading to incorrect memory allocations. This issue causes the application to crash. Known affected usage includes desktop services like Tumbler, which may process malicious files automatically when browsing directories. While no direct remote attack vectors are confirmed, any application using libgepub to parse user-supplied EPUB content could be vulnerable to a denial of service.

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://access.redhat.com/security/cve/CVE-2025-6196	Mitigation Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2373117	Issue Tracking Third Party Advisory
https://gitlab.gnome.org/GNOME/libgepub/-/issues/18	Exploit Issue Tracking Third Party Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:a:gnome:libgepub:-:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2025-06-17 15:15

Updated : 2025-08-12 12:48

NVD link : CVE-2025-6196

Mitre link : CVE-2025-6196

CVE.ORG link : CVE-2025-6196

JSON object : View

Products Affected

gnome

libgepub

redhat

enterprise_linux

CWE

CWE-190

Integer Overflow or Wraparound

{"id": "CVE-2025-6196", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "[email protected]", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 1.8}]}, "published": "2025-06-17T15:15:54.140", "references": [{"url": "https://access.redhat.com/security/cve/CVE-2025-6196", "tags": ["Mitigation", "Third Party Advisory"], "source": "[email protected]"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2373117", "tags": ["Issue Tracking", "Third Party Advisory"], "source": "[email protected]"}, {"url": "https://gitlab.gnome.org/GNOME/libgepub/-/issues/18", "tags": ["Exploit", "Issue Tracking", "Third Party Advisory"], "source": "[email protected]"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-190"}]}], "descriptions": [{"lang": "en", "value": "A flaw was found in libgepub, a library used to read EPUB files. The software mishandles file size calculations when opening specially crafted EPUB files, leading to incorrect memory allocations. This issue causes the application to crash. Known affected usage includes desktop services like Tumbler, which may process malicious files automatically when browsing directories. While no direct remote attack vectors are confirmed, any application using libgepub to parse user-supplied EPUB content could be vulnerable to a denial of service."}, {"lang": "es", "value": "Se encontr\u00f3 una falla en libgepub, una librer\u00eda para leer archivos EPUB. El software gestiona incorrectamente los c\u00e1lculos del tama\u00f1o de archivo al abrir archivos EPUB especialmente manipulados, lo que provoca asignaciones de memoria incorrectas. Este problema provoca el bloqueo de la aplicaci\u00f3n. Entre los usos afectados se incluyen servicios de escritorio como Tumbler, que pueden procesar archivos maliciosos autom\u00e1ticamente al navegar por directorios. Si bien no se han confirmado vectores de ataque remoto directo, cualquier aplicaci\u00f3n que utilice libgepub para analizar contenido EPUB proporcionado por el usuario podr\u00eda ser vulnerable a una denegaci\u00f3n de servicio."}], "lastModified": "2025-08-12T12:48:43.230", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:gnome:libgepub:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AB7E17E8-8BA2-480C-9370-53B0F9FCFDEE"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "142AD0DD-4CF3-4D74-9442-459CE3347E3A"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "[email protected]"}