CVE-2025-8746 | GNU libopts up to 27.6 __strstr_sse2 memory corruption (Issue 957)

A vulnerability, which was classified as problematic, was found in GNU libopts up to 27.6. Affected is the function __strstr_sse2. The manipulation leads to memory corruption. This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is traded as CVE-2025-8746. Local access is required to approach this attack. Furthermore, there is an exploit available.

This issue was initially reported to the tcpreplay project, but the code maintainer explains, that this “bug appears to be in libopts which is an external library.”

CVE-2025-8746 | GNU libopts up to 27.6 __strstr_sse2 memory corruption (Issue 957)

Post correlati

CVE-2025-5788 | TOTOLINK X15 1.0.0-B20230714.1105 HTTP POST Request formReflashClientTbl submit-url buffer overflow

CVE-2025-6193 | Red Hat OpenShift AI TrustyAI Explainability Toolkit os command injection

CVE-2025-4745 | code-projects Employee Record System 1.0 current_employees.php employeed_id/first_name/middle_name/last_name cross site scripting

CVE-2024-39353 | Mattermost up to 9.5.5/9.8.0 Message Content RemoteClusterFrame information disclosure