PT-2025-23988 · Alt Linux+3 · Alt Linux+3

Krzysztof Skrzętnicki

Published

2025-05-06

Updated

2025-09-11

CVE-2025-22874

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:C/A:N

Name of the Vulnerable Software and Affected Versions The product name cannot be determined.

Description The issue arises when calling Verify with a VerifyOptions.KeyUsages that contains ExtKeyUsageAny, which unintentionally disables policy validation. This affects certificate chains containing policy graphs, a relatively uncommon occurrence.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Incorrect Permission

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-732

Related Identifiers

ALT-PU-2025-10791

ALT-PU-2025-8122

AZL-63872

AZL-72104

AZL-78986

BDU:2025-08556

BIT-GOLANG-2025-22874

CVE-2025-22874

ECHO-4E0E-8B9E-064D

GO-2025-3749

MGASA-2025-0184

OPENSUSE-SU-2025:15224-1

OPENSUSE-SU-2025:15225-1

OPENSUSE-SU-2025:15251-1

OPENSUSE-SU-2025:15263-1

OPENSUSE-SU-2025:15379-1

RHSA-2025:10676

RHSA-2025:10677

RHSA-2025_10676

SUSE-SU-2025:01846-1

SUSE-SU-2025:02120-1

SUSE-SU-2025:03158-1

SUSE-SU-2025_01846-1

SUSE-SU-2025_02120-1

SUSE-SU-2025_03158-1

Affected Products

Alt Linux

Red Hat

Red Os

Suse

PT-2025-23988 · Alt Linux+3 · Alt Linux+3

CVE-2025-22874

Weakness Enumeration

Related Identifiers

Affected Products

References · 93