CVE-2025-6966

CWE-476NULL Pointer Dereference9 documents7 sources
Severity
6.9MEDIUM
EPSS
0.0%
top 87.78%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Canonical Python-aptUbuntu Python-aptDebian Debian Linux
Timeline
PublishedDec 5
Latest updateJan 15

Description

NULL pointer dereference in TagSection.keys() in python-apt on APT-based Linux systems allows a local attacker to cause a denial of service (process crash) via a crafted deb822 file with a malformed non-UTF-8 key.

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Packages3 packages

NVDubuntu/python-apt1.6.01.6.6+11
CVEListV5canonical/python-apt3.03.0.0ubuntu1.1+7
Debianpython-apt< 2.2.1.1+1

Also affects: Debian Linux 11.0

🔴Vulnerability Details

3
OSV
CVE-2025-6966: NULL pointer dereference in TagSection2025-12-05
GHSA
GHSA-285f-828q-q7g5: NULL pointer dereference in TagSection2025-12-05
CVEList
Null-pointer dereference in python-apt TagSection.keys()2025-12-05

📋Vendor Advisories

5
Ubuntu
python-apt regression2026-01-15
Ubuntu
python-apt vulnerability2025-12-09
Red Hat
python-apt: python-apt: NULL pointer dereference leads to local denial of service2025-12-05
Red Hat
kernel: qed/qed_sriov: guard against NULL derefs from qed_iov_get_vf_info2025-05-02
Debian
CVE-2025-6966: python-apt - NULL pointer dereference in TagSection.keys() in python-apt on APT-based Linux s...2025