CVE-2025-5278 – “GNU Coreutils Sort Utility Heap Buffer Under-Read Vulnerability”

May 27, 2025

CVE ID : CVE-2025-5278

Published : May 27, 2025, 9:15 p.m. | 3 hours, 44 minutes ago

Description : A flaw was found in GNU Coreutils. The sort utility’s begfield() function is vulnerable to a heap buffer under-read. The program may access memory outside the allocated buffer if a user runs a crafted command using the traditional key format. A malicious input could lead to a crash or leak sensitive data.

Severity: 4.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5222 – ICU Buffer Overflow Vulnerability

Next Article CVE-2025-5283 – Google Chrome libvpx Use-After-Free Heap Corruption Vulnerability

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

In MCP era API discoverability is now more important than ever

Google’s DeepMind CEO lists 2 AGI existential risks to society keeping him up at night — but claims “today’s AI systems” don’t warrant a pause on development

Anthropic researchers say next-generation AI models will reduce humans to “meat robots” in a spectrum of crazy futures

Xbox just quietly added two of the best RPGs of all time to Game Pass

7 reasons The Division 2 is a game you should be playing in 2025

Mastering TypeScript: How Complex Should Your Types Be?

Mastering TypeScript: How Complex Should Your Types Be?

IDMC – CDI Best Practices

PWC-IDMC Migration Gaps

Google’s DeepMind CEO lists 2 AGI existential risks to society keeping him up at night — but claims “today’s AI systems” don’t warrant a pause on development

Google’s DeepMind CEO lists 2 AGI existential risks to society keeping him up at night — but claims “today’s AI systems” don’t warrant a pause on development

Anthropic researchers say next-generation AI models will reduce humans to “meat robots” in a spectrum of crazy futures

Xbox just quietly added two of the best RPGs of all time to Game Pass

CVE-2025-5278 – “GNU Coreutils Sort Utility Heap Buffer Under-Read Vulnerability”

May 2025 Detection Highlights: VMRay Threat Identifiers, Config Extractors for Lumma & VideoSpy, and Fresh YARA Rules.

Kritiek RoundCube-lek maakt remote code execution op mailserver mogelijk

Anthropic’s Claude can now search the web when generating responses

CVE-2025-28029 – TOTOLINK Buffer Overflow Vulnerability

Microsoft is now officially rolling out Windows 11 24H2 on Windows 10 as an optional upgrade

CVE-2025-48283 – Majestic Support SQL Injection Vulnerability

CVE-2022-24067 – Apache Struts Deserialization Vulnerability

Weekly Vulnerability Report: Cyble Urges Fixes in Rockwell Automation, Microsoft and Rejetto

Open Source SVG Spinners

Support the open source projects you love this Valentine’s Day

CVE-2025-5278 – “GNU Coreutils Sort Utility Heap Buffer Under-Read Vulnerability”

Related Posts