CVE-2025-24975 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2025-24975 Interim 1 1 2025-09-22T07:59:24Z current 2025-09-22T07:59:24Z 2025-09-22T07:59:24Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2025-24975 Firebird is a relational database. Prior to snapshot versions 4.0.6.3183, 5.0.2.1610, and 6.0.0.609, Firebird is vulnerable if ExtConnPoolSize is not set equal to 0. If connections stored in ExtConnPool are not verified for presence and suitability of the CryptCallback interface is used when created versus what is available could result in a segfault in the server process. Encrypted databases, accessed by execute statement on external, may be accessed later by an attachment missing a key to that database. In a case when execute statement are chained, segfault may happen. Additionally, the segfault may affect unencrypted databases. This issue has been patched in snapshot versions 4.0.6.3183, 5.0.2.1610, and 6.0.0.609 and point releases 4.0.6 and 5.0.2. A workaround for this issue involves setting ExtConnPoolSize equal to 0 in firebird.conf. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Module for Package Hub 15 SP6 SUSE Linux Enterprise Module for Package Hub 15 SP7 SUSE Linux Enterprise Server 12 SP5-LTSS SUSE Linux Enterprise Server 12 SP5-LTSS Extended Security openSUSE Leap 15.6 firebird firebird-doc firebird-examples firebird-server firebird-utils libfbclient-devel libfbclient2 libfbclient2-32bit libib_util libib_util-32bit libib_util-devel firebird as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 firebird-examples as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 firebird-server as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 firebird-utils as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 libfbclient-devel as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 libfbclient2 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 libib_util as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 libib_util-devel as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 firebird as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 firebird-examples as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 firebird-server as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 firebird-utils as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 libfbclient-devel as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 libfbclient2 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 libib_util as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 libib_util-devel as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 firebird as a component of SUSE Linux Enterprise Server 12 SP5-LTSS firebird as a component of SUSE Linux Enterprise Server 12 SP5-LTSS Extended Security firebird as a component of openSUSE Leap 15.6 firebird-doc as a component of openSUSE Leap 15.6 firebird-examples as a component of openSUSE Leap 15.6 firebird-server as a component of openSUSE Leap 15.6 firebird-utils as a component of openSUSE Leap 15.6 libfbclient-devel as a component of openSUSE Leap 15.6 libfbclient2 as a component of openSUSE Leap 15.6 libfbclient2-32bit as a component of openSUSE Leap 15.6 libib_util as a component of openSUSE Leap 15.6 libib_util-32bit as a component of openSUSE Leap 15.6 libib_util-devel as a component of openSUSE Leap 15.6 Firebird is a relational database. Prior to snapshot versions 4.0.6.3183, 5.0.2.1610, and 6.0.0.609, Firebird is vulnerable if ExtConnPoolSize is not set equal to 0. If connections stored in ExtConnPool are not verified for presence and suitability of the CryptCallback interface is used when created versus what is available could result in a segfault in the server process. Encrypted databases, accessed by execute statement on external, may be accessed later by an attachment missing a key to that database. In a case when execute statement are chained, segfault may happen. Additionally, the segfault may affect unencrypted databases. This issue has been patched in snapshot versions 4.0.6.3183, 5.0.2.1610, and 6.0.0.609 and point releases 4.0.6 and 5.0.2. A workaround for this issue involves setting ExtConnPoolSize equal to 0 in firebird.conf. CVE-2025-24975 SUSE Linux Enterprise Module for Package Hub 15 SP6:firebird SUSE Linux Enterprise Module for Package Hub 15 SP6:firebird-examples SUSE Linux Enterprise Module for Package Hub 15 SP6:firebird-server SUSE Linux Enterprise Module for Package Hub 15 SP6:firebird-utils SUSE Linux Enterprise Module for Package Hub 15 SP6:libfbclient-devel SUSE Linux Enterprise Module for Package Hub 15 SP6:libfbclient2 SUSE Linux Enterprise Module for Package Hub 15 SP6:libib_util SUSE Linux Enterprise Module for Package Hub 15 SP6:libib_util-devel SUSE Linux Enterprise Module for Package Hub 15 SP7:firebird SUSE Linux Enterprise Module for Package Hub 15 SP7:firebird-examples SUSE Linux Enterprise Module for Package Hub 15 SP7:firebird-server SUSE Linux Enterprise Module for Package Hub 15 SP7:firebird-utils SUSE Linux Enterprise Module for Package Hub 15 SP7:libfbclient-devel SUSE Linux Enterprise Module for Package Hub 15 SP7:libfbclient2 SUSE Linux Enterprise Module for Package Hub 15 SP7:libib_util SUSE Linux Enterprise Module for Package Hub 15 SP7:libib_util-devel SUSE Linux Enterprise Server 12 SP5-LTSS Extended Security:firebird SUSE Linux Enterprise Server 12 SP5-LTSS:firebird openSUSE Leap 15.6:firebird openSUSE Leap 15.6:firebird-doc openSUSE Leap 15.6:firebird-examples openSUSE Leap 15.6:firebird-server openSUSE Leap 15.6:firebird-utils openSUSE Leap 15.6:libfbclient-devel openSUSE Leap 15.6:libfbclient2 openSUSE Leap 15.6:libfbclient2-32bit openSUSE Leap 15.6:libib_util openSUSE Leap 15.6:libib_util-32bit openSUSE Leap 15.6:libib_util-devel important 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H