Double-Free Vulnerability in GnuTLS Due to Ownership Handling Flaw
CVE-2025-32988

6.5MEDIUM

Key Information:

Vendor: Red Hat
Status: Red Hat Enterprise Linux 10; Red Hat Enterprise Linux 6; Red Hat Enterprise Linux 7; Red Hat Enterprise Linux 8
Vendor: CVE Published:; 10 July 2025

What is CVE-2025-32988?

A flaw exists in GnuTLS where incorrect ownership handling in the export logic of Subject Alternative Name (SAN) entries containing an otherName can cause a double-free vulnerability. If an invalid or malformed type-id OID is used, GnuTLS erroneously invokes asn1_delete_structure() on an ASN.1 node that it does not own. This leads to a potential double-free scenario when the parent function or another caller attempts to free the same structure. The vulnerability can be exploited using public GnuTLS APIs, resulting in denial of service or memory corruption, depending on allocator behavior.

References

https://access.redhat.com/security/cve/CVE-2025-32988

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2359622

issue-trackingx_refsource_REDHAT

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 10, 2025
Vulnerability Reserved
Apr 15, 2025

Red Hat

What is CVE-2025-32988?

References

CVSS V3.1

Timeline