CVE-2025-1471
Published: 21 February 2025
Description
In Eclipse OMR versions 0.2.0 to 0.4.0, some of the z/OS atoe print functions use a constant length buffer for string conversion. If the input format string and arguments are larger than the buffer size then buffer overflow occurs. Beginning in version 0.5.0, the conversion buffers are sized correctly and checked appropriately to prevent buffer overflows.
Security Summary
CVE-2025-1471 is a buffer overflow vulnerability (CWE-787) affecting Eclipse OMR versions 0.2.0 through 0.4.0. It occurs in certain z/OS atoe print functions, which use a fixed-length buffer for string conversion from ASCII to EBCDIC. When the input format string and arguments exceed the buffer size, a buffer overflow results. The vulnerability was published on 2025-02-21 and carries a CVSS v3.1 base score of 7.8 (AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).
A local attacker with low privileges can exploit this vulnerability with low complexity and no user interaction required. By providing oversized input to the affected print functions, the attacker can trigger the buffer overflow, potentially leading to arbitrary code execution, data corruption, or denial of service through high-impact confidentiality, integrity, and availability violations.
Advisories recommend upgrading to Eclipse OMR version 0.5.0 or later, where conversion buffers are dynamically sized and properly checked to prevent overflows. The fix is detailed in the upstream pull request at https://github.com/eclipse-omr/omr/pull/7658, with CVE assignment tracked at https://gitlab.eclipse.org/security/cve-assignement/-/issues/55.
Details
- CWE(s)