FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

LibreSSL -- overwrite and -read vulnerability

Affected packages
		libressl	<	4.1.1
		libressl-devel	<	4.1.1

Details

VuXML ID	699ef80f-9e91-11f0-bc5f-8447094a420f
Discovery	2025-10-01
Entry	2025-10-01

The LibreSSL project reports:

An incorrect length check can result in a 4-byte overwrite and an 8-byte overread.

[source]

References

CVE Name	CVE-2025-9230
URL	https://github.com/libressl/portable/releases/tag/v4.1.1

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.