CVE-2025-2176 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2025-2176 Interim 1 18 2026-03-05T01:34:01Z current 2025-03-12T00:16:13Z 2026-03-05T01:34:01Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2025-2176 A vulnerability classified as critical has been found in libzvbi up to 0.2.43. This affects the function vbi_capture_sim_load_caption of the file src/io-sim.c. The manipulation leads to integer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 0.2.44 is able to address this issue. The identifier of the patch is ca1672134b3e2962cd392212c73f44f8f4cb489f. It is recommended to upgrade the affected component. The code maintainer was informed beforehand about the issues. She reacted very fast and highly professional. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.suse.com/pipermail/sle-security-updates/2025-March/020575.html E-Mail link for SUSE-SU-2025:0979-1 https://lists.suse.com/pipermail/sle-security-updates/2025-March/020581.html E-Mail link for SUSE-SU-2025:0988-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WFNCETNVIFNZJ7PHLDDOO6PDYU27Q6MM/ E-Mail link for openSUSE-SU-2025:14891-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings Container containers/lmcache-vllm-openai:0.3.2-1.2 Container containers/open-webui:0.5.14-9.9 Container containers/vllm-openai:0.9.1-1.2 Container suse/kiosk/firefox-esr:esr Image SLES15-SP4-SAP-Azure-LI-BYOS Image SLES15-SP4-SAP-Azure-LI-BYOS-Production Image SLES15-SP4-SAP-Azure-VLI-BYOS Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production Image ai_15_6 SUSE Linux Enterprise Module for Desktop Applications 15 SP6 SUSE Linux Enterprise Module for Desktop Applications 15 SP7 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS SUSE Linux Enterprise Module for Desktop Applications 15 SP6 SUSE Linux Enterprise Module for Desktop Applications 15 SP7 SUSE Linux Enterprise Module for Package Hub 15 SP6 SUSE Linux Enterprise Module for Package Hub 15 SP7 SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4-LTSS SUSE Linux Enterprise Server 12 SP5-LTSS SUSE Linux Enterprise Server 15 SP4-LTSS SUSE Linux Enterprise Server 15 SP4-TERADATA SUSE Linux Enterprise Server 15 SP5-LTSS SUSE Linux Enterprise Module for Desktop Applications 15 SP6 SUSE Linux Enterprise Module for Desktop Applications 15 SP7 SUSE Linux Enterprise Server 16.0 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SP5 SUSE Linux Enterprise Module for Desktop Applications 15 SP6 SUSE Linux Enterprise Module for Desktop Applications 15 SP7 openSUSE Leap 15.6 openSUSE Tumbleweed libzvbi-chains0-0.2.35-150000.4.3.1 libzvbi-chains0-0.2.44-1.1 libzvbi-chains0-0.2.44-160000.2.2 libzvbi-chains0-32bit-0.2.35-150000.4.3.1 libzvbi-chains0-32bit-0.2.44-1.1 libzvbi0 libzvbi0-0.2.35-150000.4.3.1 libzvbi0-0.2.35-3.3.1 libzvbi0-0.2.44-1.1 libzvbi0-0.2.44-160000.2.2 libzvbi0-32bit-0.2.35-150000.4.3.1 libzvbi0-32bit-0.2.44-1.1 zvbi zvbi-0.2.35-150000.4.3.1 zvbi-0.2.44-1.1 zvbi-0.2.44-160000.2.2 zvbi-devel-0.2.35-150000.4.3.1 zvbi-devel-0.2.35-3.3.1 zvbi-devel-0.2.44-1.1 zvbi-devel-32bit-0.2.35-150000.4.3.1 zvbi-devel-32bit-0.2.44-1.1 zvbi-lang-0.2.35-150000.4.3.1 zvbi-lang-0.2.44-1.1 zvbi-lang-0.2.44-160000.2.2 libzvbi0-0.2.35-150000.4.3.1 as a component of Container containers/lmcache-vllm-openai:0.3.2-1.2 libzvbi0-0.2.35-150000.4.3.1 as a component of Container containers/open-webui:0.5.14-9.9 libzvbi0-0.2.35-150000.4.3.1 as a component of Container containers/vllm-openai:0.9.1-1.2 libzvbi0-0.2.35-150000.4.3.1 as a component of Container suse/kiosk/firefox-esr:esr libzvbi0-0.2.35-150000.4.3.1 as a component of Image SLES15-SP4-SAP-Azure-LI-BYOS libzvbi0-0.2.35-150000.4.3.1 as a component of Image SLES15-SP4-SAP-Azure-LI-BYOS-Production libzvbi0-0.2.35-150000.4.3.1 as a component of Image SLES15-SP4-SAP-Azure-VLI-BYOS libzvbi0-0.2.35-150000.4.3.1 as a component of Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production libzvbi0-0.2.35-150000.4.3.1 as a component of Image ai_15_6 libzvbi0-0.2.35-150000.4.3.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS libzvbi0-0.2.35-150000.4.3.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS libzvbi0-0.2.35-150000.4.3.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS libzvbi0-0.2.35-150000.4.3.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS libzvbi0-0.2.35-150000.4.3.1 as a component of SUSE Linux Enterprise Module for Desktop Applications 15 SP6 libzvbi0-0.2.35-150000.4.3.1 as a component of SUSE Linux Enterprise Module for Desktop Applications 15 SP7 libzvbi-chains0-0.2.35-150000.4.3.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 zvbi-0.2.35-150000.4.3.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 zvbi-devel-0.2.35-150000.4.3.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 libzvbi-chains0-0.2.35-150000.4.3.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 zvbi-0.2.35-150000.4.3.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 zvbi-devel-0.2.35-150000.4.3.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 libzvbi0-0.2.35-3.3.1 as a component of SUSE Linux Enterprise Server 12 SP3-TERADATA libzvbi0-0.2.35-3.3.1 as a component of SUSE Linux Enterprise Server 12 SP5-LTSS zvbi-devel-0.2.35-3.3.1 as a component of SUSE Linux Enterprise Server 12 SP5-LTSS libzvbi0-0.2.35-150000.4.3.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS libzvbi0-0.2.35-150000.4.3.1 as a component of SUSE Linux Enterprise Server 15 SP4-TERADATA libzvbi0-0.2.35-150000.4.3.1 as a component of SUSE Linux Enterprise Server 15 SP5-LTSS libzvbi-chains0-0.2.44-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 libzvbi0-0.2.44-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 zvbi-0.2.44-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 zvbi-lang-0.2.44-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 libzvbi0-0.2.35-3.3.1 as a component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 zvbi-devel-0.2.35-3.3.1 as a component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 libzvbi0-0.2.35-150000.4.3.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 libzvbi0-0.2.35-150000.4.3.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP5 libzvbi-chains0-0.2.35-150000.4.3.1 as a component of openSUSE Leap 15.6 libzvbi-chains0-32bit-0.2.35-150000.4.3.1 as a component of openSUSE Leap 15.6 libzvbi0-0.2.35-150000.4.3.1 as a component of openSUSE Leap 15.6 libzvbi0-32bit-0.2.35-150000.4.3.1 as a component of openSUSE Leap 15.6 zvbi-0.2.35-150000.4.3.1 as a component of openSUSE Leap 15.6 zvbi-devel-0.2.35-150000.4.3.1 as a component of openSUSE Leap 15.6 zvbi-devel-32bit-0.2.35-150000.4.3.1 as a component of openSUSE Leap 15.6 zvbi-lang-0.2.35-150000.4.3.1 as a component of openSUSE Leap 15.6 libzvbi-chains0-0.2.44-1.1 as a component of openSUSE Tumbleweed libzvbi-chains0-32bit-0.2.44-1.1 as a component of openSUSE Tumbleweed libzvbi0-0.2.44-1.1 as a component of openSUSE Tumbleweed libzvbi0-32bit-0.2.44-1.1 as a component of openSUSE Tumbleweed zvbi-0.2.44-1.1 as a component of openSUSE Tumbleweed zvbi-devel-0.2.44-1.1 as a component of openSUSE Tumbleweed zvbi-devel-32bit-0.2.44-1.1 as a component of openSUSE Tumbleweed zvbi-lang-0.2.44-1.1 as a component of openSUSE Tumbleweed libzvbi0 as a component of SUSE Linux Enterprise Server 12 SP2-LTSS zvbi as a component of SUSE Linux Enterprise Server 12 SP2-LTSS libzvbi0 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS zvbi as a component of SUSE Linux Enterprise Server 12 SP4-LTSS A vulnerability classified as critical has been found in libzvbi up to 0.2.43. This affects the function vbi_capture_sim_load_caption of the file src/io-sim.c. The manipulation leads to integer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 0.2.44 is able to address this issue. The identifier of the patch is ca1672134b3e2962cd392212c73f44f8f4cb489f. It is recommended to upgrade the affected component. The code maintainer was informed beforehand about the issues. She reacted very fast and highly professional. CVE-2025-2176 Container containers/lmcache-vllm-openai:0.3.2-1.2:libzvbi0-0.2.35-150000.4.3.1 Container containers/open-webui:0.5.14-9.9:libzvbi0-0.2.35-150000.4.3.1 Container containers/vllm-openai:0.9.1-1.2:libzvbi0-0.2.35-150000.4.3.1 Container suse/kiosk/firefox-esr:esr:libzvbi0-0.2.35-150000.4.3.1 Image SLES15-SP4-SAP-Azure-LI-BYOS:libzvbi0-0.2.35-150000.4.3.1 Image SLES15-SP4-SAP-Azure-LI-BYOS-Production:libzvbi0-0.2.35-150000.4.3.1 Image SLES15-SP4-SAP-Azure-VLI-BYOS:libzvbi0-0.2.35-150000.4.3.1 Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production:libzvbi0-0.2.35-150000.4.3.1 Image ai_15_6:libzvbi0-0.2.35-150000.4.3.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libzvbi0-0.2.35-150000.4.3.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libzvbi0-0.2.35-150000.4.3.1 SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libzvbi0-0.2.35-150000.4.3.1 SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libzvbi0-0.2.35-150000.4.3.1 SUSE Linux Enterprise Module for Desktop Applications 15 SP6:libzvbi0-0.2.35-150000.4.3.1 SUSE Linux Enterprise Module for Desktop Applications 15 SP7:libzvbi0-0.2.35-150000.4.3.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP7:libzvbi-chains0-0.2.35-150000.4.3.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP7:libzvbi-chains0-32bit-0.2.35-150000.4.3.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP7:libzvbi0-32bit-0.2.35-150000.4.3.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP7:zvbi-0.2.35-150000.4.3.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP7:zvbi-devel-0.2.35-150000.4.3.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP7:zvbi-devel-32bit-0.2.35-150000.4.3.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP7:zvbi-lang-0.2.35-150000.4.3.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libzvbi-chains0-0.2.35-150000.4.3.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:zvbi-0.2.35-150000.4.3.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:zvbi-devel-0.2.35-150000.4.3.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:libzvbi-chains0-0.2.35-150000.4.3.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:zvbi-0.2.35-150000.4.3.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:zvbi-devel-0.2.35-150000.4.3.1 SUSE Linux Enterprise Server 12 SP3-TERADATA:libzvbi0-0.2.35-3.3.1 SUSE Linux Enterprise Server 12 SP5-LTSS:libzvbi0-0.2.35-3.3.1 SUSE Linux Enterprise Server 12 SP5-LTSS:zvbi-devel-0.2.35-3.3.1 SUSE Linux Enterprise Server 15 SP4-LTSS:libzvbi0-0.2.35-150000.4.3.1 SUSE Linux Enterprise Server 15 SP4-TERADATA:libzvbi0-0.2.35-150000.4.3.1 SUSE Linux Enterprise Server 15 SP5-LTSS:libzvbi0-0.2.35-150000.4.3.1 SUSE Linux Enterprise Server 16.0:libzvbi-chains0-0.2.44-160000.2.2 SUSE Linux Enterprise Server 16.0:libzvbi0-0.2.44-160000.2.2 SUSE Linux Enterprise Server 16.0:zvbi-0.2.44-160000.2.2 SUSE Linux Enterprise Server 16.0:zvbi-lang-0.2.44-160000.2.2 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libzvbi0-0.2.35-3.3.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:zvbi-devel-0.2.35-3.3.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:libzvbi0-0.2.35-150000.4.3.1 SUSE Linux Enterprise Server for SAP Applications 15 SP5:libzvbi0-0.2.35-150000.4.3.1 openSUSE Leap 15.6:libzvbi-chains0-0.2.35-150000.4.3.1 openSUSE Leap 15.6:libzvbi-chains0-32bit-0.2.35-150000.4.3.1 openSUSE Leap 15.6:libzvbi0-0.2.35-150000.4.3.1 openSUSE Leap 15.6:libzvbi0-32bit-0.2.35-150000.4.3.1 openSUSE Leap 15.6:zvbi-0.2.35-150000.4.3.1 openSUSE Leap 15.6:zvbi-devel-0.2.35-150000.4.3.1 openSUSE Leap 15.6:zvbi-devel-32bit-0.2.35-150000.4.3.1 openSUSE Leap 15.6:zvbi-lang-0.2.35-150000.4.3.1 openSUSE Tumbleweed:libzvbi-chains0-0.2.44-1.1 openSUSE Tumbleweed:libzvbi-chains0-32bit-0.2.44-1.1 openSUSE Tumbleweed:libzvbi0-0.2.44-1.1 openSUSE Tumbleweed:libzvbi0-32bit-0.2.44-1.1 openSUSE Tumbleweed:zvbi-0.2.44-1.1 openSUSE Tumbleweed:zvbi-devel-0.2.44-1.1 openSUSE Tumbleweed:zvbi-devel-32bit-0.2.44-1.1 openSUSE Tumbleweed:zvbi-lang-0.2.44-1.1 important 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L