CVE-2025-68160 — Out-of-bounds Write in Openssl
Severity
4.7MEDIUMNVD
OSV6.1
EPSS
0.0%
top 92.31%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedJan 27
Description
Issue summary: Writing large, newline-free data into a BIO chain using the
line-buffering filter where the next BIO performs short writes can trigger
a heap-based out-of-bounds write.
Impact summary: This out-of-bounds write can cause memory corruption which
typically results in a crash, leading to Denial of Service for an application.
The line-buffering BIO filter (BIO_f_linebuffer) is not used by default in
TLS/SSL data paths. In OpenSSL command-line applications, it is typically
only pushed…
CVSS vector
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.0 | Impact: 3.6
Affected Packages5 packages
Patches
🔴Vulnerability Details
7OSV▶
CVE-2025-68160: Issue summary: Writing large, newline-free data into a BIO chain using the
line-buffering filter where the next BIO performs short writes can trigger↗2026-01-27
OSV▶
CVE-2025-68160: Issue summary: Writing large, newline-free data into a BIO chain using the line-buffering filter where the next BIO performs short writes can trigger↗2026-01-27
OSV▶
CVE-2025-68160: Issue summary: Writing large, newline-free data into a BIO chain using the line-buffering filter where the next BIO performs short writes can trigger↗2026-01-27
📋Vendor Advisories
5Debian▶
CVE-2025-68160: openssl - Issue summary: Writing large, newline-free data into a BIO chain using the line-...↗2025