CVE-2025-68160 · threatengine.sh

Home/CVE/Issue summary: Writing large, newline-free data into a BIO chain using the line-buffering filter where the next BIO perf

CVE

CVE-2025-68160

Issue summary: Writing large, newline-free data into a BIO chain using the line-buffering filter where the next BIO perf

Issue summary: Writing large, newline-free data into a BIO chain using the line-buffering filter where the next BIO performs short writes can trigger a heap-based out-of-bounds write. Impact summary: This out-of-bounds write can cause memory corruption which typically results in a crash, leading to Denial of Service for an application. The line-buffering BIO filter (BIO_f_linebuffer) is not used by default in TLS/SSL data paths.

In OpenSSL command-line applications, it is typically only pushed onto stdout/stderr on VMS systems. Third-party applications that explicitly use this filter with a BIO chain that can short-write and that write large, newline-free data influenced by an attacker would be affected. However, the circumstances where this could happen are unlikely to be under attacker control, and BIO_f_linebuffer is unlikely to be handling non-curated data controlled by an attacker.

For that reason the issue was assessed as Low severity. The FIPS modules in 3.6, 3.5, 3.4, 3.3 and 3.0 are not affected by this issue, as the BIO implementation is outside the OpenSSL FIPS module boundary. OpenSSL 3.6, 3.5, 3.4, 3.3, 3.0, 1.1.1 and 1.0.2 are vulnerable to this issue.

MEDIUM · CVSS 4.7 EPSS 0.00042

Monitor

No active-exploitation, high-EPSS, or public-exploit signals - routine patching cadence

Sigma rules0 YARA rules0

⬡

Weakness Classification

CWE-787Out-of-bounds Write

▤

Affected Products & Versions

7

openssl>= 1.0.2 and < 1.0.2zn
openssl>= 1.1.1 and < 1.1.1ze
openssl>= 3.0.0 and < 3.0.19
openssl>= 3.3.0 and < 3.3.6
openssl>= 3.4.0 and < 3.4.4
openssl>= 3.5.0 and < 3.5.5
openssl>= 3.6.0 and < 3.6.1

▣

Scoring & Timeline

4.7

MEDIUM · CVSS v3.1 · openssl-security@openssl.org

View on NVD

Attack Vector

Network Adjacent Local Physical

Attack Complexity

Low High

Privileges Required

None Low High

User Interaction

None Required

Scope

Unchanged Changed

Confidentiality

None Low High

Integrity

None Low High

Availability

None Low High

Published to NVD27 Jan 2026 · 04:16 PM

CVSS VectorCVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

SSVC triage · cisa-vulnrichment

Exploitation

none

Automatable

no

Technical impact

partial

SSVC asks the questions that actually drive patch urgency: is it being exploited, can attacks be automated, and how total is the impact.

⚑

Vendor Advisories

30

rhsaRHSA-2026:7261Moderate
suse-csafopenSUSE-SU-2026:10237-1
suse-csafSUSE-SU-2026:20373-1
suse-csafSUSE-SU-2026:0498-1
rhsaRHSA-2026:4943Important
Show all 30 vendor advisoriessuse-csafSUSE-SU-2026:20349-1
suse-csafopenSUSE-SU-2026:20152-1
suse-csafSUSE-SU-2026:0358-1
suse-csafSUSE-SU-2026:0359-1
suse-csafSUSE-SU-2026:0360-1
suse-csafSUSE-SU-2026:20211-1
suse-csafSUSE-SU-2026:20223-1
suse-csafSUSE-SU-2026:0346-1
suse-csafSUSE-SU-2026:0332-1
suse-csafSUSE-SU-2026:0333-1
suse-csafSUSE-SU-2026:0343-1
suse-csafSUSE-SU-2026:0309-1
suse-csafSUSE-SU-2026:0310-1
suse-csafSUSE-SU-2026:0311-1
suse-csafSUSE-SU-2026:0312-1
suse-csafSUSE-SU-2026:0331-1
usnUSN-7980-2
usnUSN-7980-1
rhsaRHSA-2026:3228Important
rhsaRHSA-2026:1736Important
rhsaRHSA-2026:2563Important
rhsaRHSA-2026:1473Important
rhsaRHSA-2026:2485Important
rhsaRHSA-2026:1472Important
siemens-csafSSA-265688

🔗

References & Sources

7

Source URLs (vendor pages, mailing lists, write-ups). Exploit/PoC links are in their own section above to avoid duplication.

https://github.com/openssl/openssl/commit/384011202af92605d926fafe4a0bcd6b65d162adPatch

https://github.com/openssl/openssl/commit/475c466ef2fbd8fc1df6fae1c3eed9c813fc8ff6Patch

https://github.com/openssl/openssl/commit/4c96fbba618e1940f038012506ee9e21d32ee12cPatch

https://github.com/openssl/openssl/commit/6845c3b6460a98b1ec4e463baa2ea1a63a32d7c0Patch

https://github.com/openssl/openssl/commit/68a7cd2e2816c3a02f4d45a2ce43fc04fac97096Patch

https://openssl-library.org/news/secadv/20260127.txtVendor Advisory

Show all 7 references

https://cert-portal.siemens.com/productcert/html/ssa-265688.html

Intelligence Graph · click any node to traverse

CVETechnique ActorTool Family

drag to reposition · click any node to traverse · button top-right enlarges

External lookups - second-class, for what we don’t hold ourselves

NVD CVE.org CISA Vulners Exploit-DB GitHub PoC VulnCheck KEV GreyNoise

Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities

Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs

Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures

Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1

About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service

threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin