PT-2025-10715 · Libzvbi+7 · Libzvbi+7

Ninpwn

Published

2025-03-10

Updated

2025-10-17

CVE-2025-2176

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions libzvbi versions 0.2.43 and earlier

Description A critical issue has been found in libzvbi, affecting the vbi capture sim load caption function in the src/io-sim.c file. This issue leads to an integer overflow and can be initiated remotely. The code maintainer was informed beforehand and reacted quickly and professionally.

Recommendations For libzvbi versions 0.2.43 and earlier, update to version 0.2.44 to address this issue. As a temporary workaround, consider disabling the vbi capture sim load caption function until the update is applied.

Fix

Integer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-190CWE-189

Related Identifiers

ALT-PU-2025-12980

BDU:2025-05986

CVE-2025-2176

GHSA-G7CG-7GW9-V8CF

MGASA-2025-0121

OESA-2025-1308

OPENSUSE-SU-2025:14891-1

OPENSUSE-SU-2025_0979-1

SUSE-SU-2025:0979-1

SUSE-SU-2025:0988-1

SUSE-SU-2025_0979-1

SUSE-SU-2025_0988-1

USN-7367-1

Affected Products

Alt Linux

Astra Linux

Debian

Linuxmint

Red Os

Suse

Ubuntu

Libzvbi

PT-2025-10715 · Libzvbi+7 · Libzvbi+7

CVE-2025-2176

Weakness Enumeration

Related Identifiers

Affected Products

References · 59