CVE-2025-54989 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2025-54989 Interim 1 1 2025-09-22T07:42:02Z current 2025-09-22T07:42:02Z 2025-09-22T07:42:02Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2025-54989 Firebird is a relational database. Prior to versions 3.0.13, 4.0.6, and 5.0.3, there is an XDR message parsing NULL pointer dereference denial-of-service vulnerability in Firebird. This specific flaw exists within the parsing of xdr message from client. It leads to NULL pointer dereference and DoS. This issue has been patched in versions 3.0.13, 4.0.6, and 5.0.3. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.suse.com/pipermail/sle-updates/2025-August/041366.html E-Mail link for SUSE-SU-2025:02991-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Module for Package Hub 15 SP6 SUSE Linux Enterprise Module for Package Hub 15 SP7 SUSE Linux Enterprise Server 12 SP5-LTSS SUSE Linux Enterprise Server 12 SP5-LTSS Extended Security openSUSE Leap 15.6 firebird firebird-3.0.4.33054-150200.3.3.1 firebird-doc-3.0.4.33054-150200.3.3.1 firebird-examples-3.0.4.33054-150200.3.3.1 firebird-server-3.0.4.33054-150200.3.3.1 firebird-utils-3.0.4.33054-150200.3.3.1 libfbclient-devel-3.0.4.33054-150200.3.3.1 libfbclient2-3.0.4.33054-150200.3.3.1 libfbclient2-32bit-3.0.4.33054-150200.3.3.1 libib_util-3.0.4.33054-150200.3.3.1 libib_util-32bit-3.0.4.33054-150200.3.3.1 libib_util-devel-3.0.4.33054-150200.3.3.1 firebird-3.0.4.33054-150200.3.3.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 firebird-examples-3.0.4.33054-150200.3.3.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 firebird-server-3.0.4.33054-150200.3.3.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 firebird-utils-3.0.4.33054-150200.3.3.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 libfbclient-devel-3.0.4.33054-150200.3.3.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 libfbclient2-3.0.4.33054-150200.3.3.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 libib_util-3.0.4.33054-150200.3.3.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 libib_util-devel-3.0.4.33054-150200.3.3.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 firebird-3.0.4.33054-150200.3.3.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 firebird-examples-3.0.4.33054-150200.3.3.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 firebird-server-3.0.4.33054-150200.3.3.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 firebird-utils-3.0.4.33054-150200.3.3.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 libfbclient-devel-3.0.4.33054-150200.3.3.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 libfbclient2-3.0.4.33054-150200.3.3.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 libib_util-3.0.4.33054-150200.3.3.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 libib_util-devel-3.0.4.33054-150200.3.3.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 firebird-3.0.4.33054-150200.3.3.1 as a component of openSUSE Leap 15.6 firebird-doc-3.0.4.33054-150200.3.3.1 as a component of openSUSE Leap 15.6 firebird-examples-3.0.4.33054-150200.3.3.1 as a component of openSUSE Leap 15.6 firebird-server-3.0.4.33054-150200.3.3.1 as a component of openSUSE Leap 15.6 firebird-utils-3.0.4.33054-150200.3.3.1 as a component of openSUSE Leap 15.6 libfbclient-devel-3.0.4.33054-150200.3.3.1 as a component of openSUSE Leap 15.6 libfbclient2-3.0.4.33054-150200.3.3.1 as a component of openSUSE Leap 15.6 libfbclient2-32bit-3.0.4.33054-150200.3.3.1 as a component of openSUSE Leap 15.6 libib_util-3.0.4.33054-150200.3.3.1 as a component of openSUSE Leap 15.6 libib_util-32bit-3.0.4.33054-150200.3.3.1 as a component of openSUSE Leap 15.6 libib_util-devel-3.0.4.33054-150200.3.3.1 as a component of openSUSE Leap 15.6 firebird as a component of SUSE Linux Enterprise Server 12 SP5-LTSS firebird as a component of SUSE Linux Enterprise Server 12 SP5-LTSS Extended Security Firebird is a relational database. Prior to versions 3.0.13, 4.0.6, and 5.0.3, there is an XDR message parsing NULL pointer dereference denial-of-service vulnerability in Firebird. This specific flaw exists within the parsing of xdr message from client. It leads to NULL pointer dereference and DoS. This issue has been patched in versions 3.0.13, 4.0.6, and 5.0.3. CVE-2025-54989 SUSE Linux Enterprise Module for Package Hub 15 SP6:firebird-3.0.4.33054-150200.3.3.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:firebird-examples-3.0.4.33054-150200.3.3.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:firebird-server-3.0.4.33054-150200.3.3.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:firebird-utils-3.0.4.33054-150200.3.3.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libfbclient-devel-3.0.4.33054-150200.3.3.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libfbclient2-3.0.4.33054-150200.3.3.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libib_util-3.0.4.33054-150200.3.3.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:libib_util-devel-3.0.4.33054-150200.3.3.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:firebird-3.0.4.33054-150200.3.3.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:firebird-examples-3.0.4.33054-150200.3.3.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:firebird-server-3.0.4.33054-150200.3.3.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:firebird-utils-3.0.4.33054-150200.3.3.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:libfbclient-devel-3.0.4.33054-150200.3.3.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:libfbclient2-3.0.4.33054-150200.3.3.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:libib_util-3.0.4.33054-150200.3.3.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:libib_util-devel-3.0.4.33054-150200.3.3.1 openSUSE Leap 15.6:firebird-3.0.4.33054-150200.3.3.1 openSUSE Leap 15.6:firebird-doc-3.0.4.33054-150200.3.3.1 openSUSE Leap 15.6:firebird-examples-3.0.4.33054-150200.3.3.1 openSUSE Leap 15.6:firebird-server-3.0.4.33054-150200.3.3.1 openSUSE Leap 15.6:firebird-utils-3.0.4.33054-150200.3.3.1 openSUSE Leap 15.6:libfbclient-devel-3.0.4.33054-150200.3.3.1 openSUSE Leap 15.6:libfbclient2-3.0.4.33054-150200.3.3.1 openSUSE Leap 15.6:libfbclient2-32bit-3.0.4.33054-150200.3.3.1 openSUSE Leap 15.6:libib_util-3.0.4.33054-150200.3.3.1 openSUSE Leap 15.6:libib_util-32bit-3.0.4.33054-150200.3.3.1 openSUSE Leap 15.6:libib_util-devel-3.0.4.33054-150200.3.3.1 important 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H