{"id":"CVE-2025-68160","details":"Issue summary: Writing large, newline-free data into a BIO chain using the\nline-buffering filter where the next BIO performs short writes can trigger\na heap-based out-of-bounds write.\n\nImpact summary: This out-of-bounds write can cause memory corruption which\ntypically results in a crash, leading to Denial of Service for an application.\n\nThe line-buffering BIO filter (BIO_f_linebuffer) is not used by default in\nTLS/SSL data paths. In OpenSSL command-line applications, it is typically\nonly pushed onto stdout/stderr on VMS systems. Third-party applications that\nexplicitly use this filter with a BIO chain that can short-write and that\nwrite large, newline-free data influenced by an attacker would be affected.\nHowever, the circumstances where this could happen are unlikely to be under\nattacker control, and BIO_f_linebuffer is unlikely to be handling non-curated\ndata controlled by an attacker. For that reason the issue was assessed as\nLow severity.\n\nThe FIPS modules in 3.6, 3.5, 3.4, 3.3 and 3.0 are not affected by this issue,\nas the BIO implementation is outside the OpenSSL FIPS module boundary.\n\nOpenSSL 3.6, 3.5, 3.4, 3.3, 3.0, 1.1.1 and 1.0.2 are vulnerable to this issue.","aliases":["ECHO-3df5-a3a2-6763"],"modified":"2026-04-14T18:48:45.748756194Z","published":"2026-01-27T16:16:15.900Z","related":["ALSA-2026:1472","ALSA-2026:1473","CGA-h2rf-gww3-5hm6","MGASA-2026-0029","SUSE-SU-2026:0309-1","SUSE-SU-2026:0310-1","SUSE-SU-2026:0311-1","SUSE-SU-2026:0312-1","SUSE-SU-2026:0331-1","SUSE-SU-2026:0332-1","SUSE-SU-2026:0333-1","SUSE-SU-2026:0343-1","SUSE-SU-2026:0346-1","SUSE-SU-2026:0358-1","SUSE-SU-2026:0359-1","SUSE-SU-2026:0360-1","SUSE-SU-2026:0498-1","SUSE-SU-2026:20211-1","SUSE-SU-2026:20223-1","SUSE-SU-2026:20349-1","SUSE-SU-2026:20373-1","openSUSE-SU-2026:10237-1","openSUSE-SU-2026:20152-1"],"references":[{"type":"ADVISORY","url":"https://openssl-library.org/news/secadv/20260127.txt"},{"type":"FIX","url":"https://github.com/openssl/openssl/commit/384011202af92605d926fafe4a0bcd6b65d162ad"},{"type":"FIX","url":"https://github.com/openssl/openssl/commit/475c466ef2fbd8fc1df6fae1c3eed9c813fc8ff6"},{"type":"FIX","url":"https://github.com/openssl/openssl/commit/4c96fbba618e1940f038012506ee9e21d32ee12c"},{"type":"FIX","url":"https://github.com/openssl/openssl/commit/6845c3b6460a98b1ec4e463baa2ea1a63a32d7c0"},{"type":"FIX","url":"https://github.com/openssl/openssl/commit/68a7cd2e2816c3a02f4d45a2ce43fc04fac97096"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/openssl/openssl","events":[{"introduced":"e818b74be2170fbe957a07b0da4401c2b694b3b8"},{"fixed":"e818b74be2170fbe957a07b0da4401c2b694b3b8"},{"introduced":"e04bd3433fd84e1861bf258ea37928d9845e6a86"},{"fixed":"e04bd3433fd84e1861bf258ea37928d9845e6a86"},{"introduced":"89cd17a031e022211684eb7eb41190cf1910f9fa"},{"fixed":"a22063cd69a077cc68bb4c10e9f351f75899b194"},{"introduced":"4cb31128b5790819dfeea2739fbde265f71a10a2"},{"fixed":"4601ff25acd6c2fe58a8bfe241e6c470e27b8074"},{"introduced":"98acb6b02839c609ef5b837794e08d906d965335"},{"fixed":"565bdcc41bbf89fcbaf962636469332689f0c9fd"},{"introduced":"636dfadc70ce26f2473870570bfd9ec352806b1d"},{"fixed":"67b5686b4419b4cb8caa502711c41815f5279751"},{"introduced":"7b371d80d959ec9ab4139d09d78e83c090de9779"},{"fixed":"c9a9e5b10105ad850b6e4d1122c645c67767c341"},{"fixed":"384011202af92605d926fafe4a0bcd6b65d162ad"},{"fixed":"475c466ef2fbd8fc1df6fae1c3eed9c813fc8ff6"},{"fixed":"4c96fbba618e1940f038012506ee9e21d32ee12c"},{"fixed":"6845c3b6460a98b1ec4e463baa2ea1a63a32d7c0"},{"fixed":"68a7cd2e2816c3a02f4d45a2ce43fc04fac97096"}],"database_specific":{"versions":[{"introduced":"1.0.2"},{"fixed":"1.0.2zn"},{"introduced":"1.1.1"},{"fixed":"1.1.1ze"},{"introduced":"3.0.0"},{"fixed":"3.0.19"},{"introduced":"3.3.0"},{"fixed":"3.3.6"},{"introduced":"3.4.0"},{"fixed":"3.4.4"},{"introduced":"3.5.0"},{"fixed":"3.5.5"},{"introduced":"3.6.0"},{"fixed":"3.6.1"}]}}],"versions":["3.0-POST-CLANG-FORMAT-WEBKIT","3.0-PRE-CLANG-FORMAT-WEBKIT","3.3-POST-CLANG-FORMAT-WEBKIT","3.3-PRE-CLANG-FORMAT-WEBKIT","3.4-POST-CLANG-FORMAT-WEBKIT","3.4-PRE-CLANG-FORMAT-WEBKIT","3.5-POST-CLANG-FORMAT-WEBKIT","3.5-PRE-CLANG-FORMAT-WEBKIT","3.6-POST-CLANG-FORMAT-WEBKIT","3.6-PRE-CLANG-FORMAT-WEBKIT","openssl-3.0.0","openssl-3.0.1","openssl-3.0.10","openssl-3.0.11","openssl-3.0.12","openssl-3.0.13","openssl-3.0.14","openssl-3.0.15","openssl-3.0.16","openssl-3.0.17","openssl-3.0.18","openssl-3.0.2","openssl-3.0.3","openssl-3.0.4","openssl-3.0.5","openssl-3.0.6","openssl-3.0.7","openssl-3.0.8","openssl-3.0.9","openssl-3.3.0","openssl-3.3.1","openssl-3.3.2","openssl-3.3.3","openssl-3.3.4","openssl-3.3.5","openssl-3.4.0","openssl-3.4.1","openssl-3.4.2","openssl-3.4.3","openssl-3.5.0","openssl-3.5.1","openssl-3.5.2","openssl-3.5.3","openssl-3.5.4","openssl-3.6.0"],"database_specific":{"vanir_signatures":[{"signature_type":"Line","target":{"file":"crypto/bio/bf_lbuf.c"},"id":"CVE-2025-68160-11f3e179","signature_version":"v1","source":"https://github.com/openssl/openssl/commit/475c466ef2fbd8fc1df6fae1c3eed9c813fc8ff6","digest":{"line_hashes":["326706324675548840343059491432175579308","114844763854417187951168206090197510366","167345785719281904993519213285676239194","257263426464193822686404804161157532412","50859066439319194516902197275909064518","18456403878150118977756109076675068777","52375315159804342268105767276256543041","58506114754643604034222004329137803376"],"threshold":0.9},"deprecated":false},{"signature_type":"Line","target":{"file":"crypto/bio/bf_lbuf.c"},"id":"CVE-2025-68160-193f929b","signature_version":"v1","source":"https://github.com/openssl/openssl/commit/6845c3b6460a98b1ec4e463baa2ea1a63a32d7c0","digest":{"line_hashes":["326706324675548840343059491432175579308","114844763854417187951168206090197510366","167345785719281904993519213285676239194","257263426464193822686404804161157532412","50859066439319194516902197275909064518","18456403878150118977756109076675068777","52375315159804342268105767276256543041","58506114754643604034222004329137803376"],"threshold":0.9},"deprecated":false},{"signature_type":"Function","target":{"file":"crypto/bio/bf_lbuf.c","function":"linebuffer_write"},"id":"CVE-2025-68160-371c2c54","signature_version":"v1","source":"https://github.com/openssl/openssl/commit/384011202af92605d926fafe4a0bcd6b65d162ad","digest":{"function_hash":"91143076051739638548163354092603980205","length":1836},"deprecated":false},{"signature_type":"Line","target":{"file":"crypto/bio/bf_lbuf.c"},"id":"CVE-2025-68160-5f322883","signature_version":"v1","source":"https://github.com/openssl/openssl/commit/384011202af92605d926fafe4a0bcd6b65d162ad","digest":{"line_hashes":["326706324675548840343059491432175579308","114844763854417187951168206090197510366","167345785719281904993519213285676239194","257263426464193822686404804161157532412","50859066439319194516902197275909064518","18456403878150118977756109076675068777","52375315159804342268105767276256543041","58506114754643604034222004329137803376"],"threshold":0.9},"deprecated":false},{"signature_type":"Function","target":{"file":"crypto/bio/bf_lbuf.c","function":"linebuffer_write"},"id":"CVE-2025-68160-6544ee0a","signature_version":"v1","source":"https://github.com/openssl/openssl/commit/475c466ef2fbd8fc1df6fae1c3eed9c813fc8ff6","digest":{"function_hash":"91143076051739638548163354092603980205","length":1836},"deprecated":false},{"signature_type":"Line","deprecated":false,"id":"CVE-2025-68160-6dcc1b10","signature_version":"v1","source":"https://github.com/openssl/openssl/commit/4c96fbba618e1940f038012506ee9e21d32ee12c","digest":{"line_hashes":["326706324675548840343059491432175579308","114844763854417187951168206090197510366","167345785719281904993519213285676239194","257263426464193822686404804161157532412","50859066439319194516902197275909064518","18456403878150118977756109076675068777","52375315159804342268105767276256543041","58506114754643604034222004329137803376"],"threshold":0.9},"target":{"file":"crypto/bio/bf_lbuf.c"}},{"signature_type":"Line","target":{"file":"include/openssl/opensslv.h"},"id":"CVE-2025-68160-c377fa22","signature_version":"v1","source":"https://github.com/openssl/openssl/commit/e04bd3433fd84e1861bf258ea37928d9845e6a86","digest":{"line_hashes":["28170854778703993674264004058177114599","73132526844288570625317440636111911761","177405411499435185068645597737938634778","224809958623850711330610094965797758930","295554444428855106393106961197201359586"],"threshold":0.9},"deprecated":false},{"signature_type":"Function","target":{"file":"crypto/bio/bf_lbuf.c","function":"linebuffer_write"},"id":"CVE-2025-68160-cd92b258","signature_version":"v1","source":"https://github.com/openssl/openssl/commit/4c96fbba618e1940f038012506ee9e21d32ee12c","digest":{"function_hash":"177227187165901619068025629445574661809","length":1842},"deprecated":false},{"signature_type":"Function","target":{"file":"crypto/bio/bf_lbuf.c","function":"linebuffer_write"},"id":"CVE-2025-68160-d2ec84eb","signature_version":"v1","source":"https://github.com/openssl/openssl/commit/6845c3b6460a98b1ec4e463baa2ea1a63a32d7c0","digest":{"function_hash":"91143076051739638548163354092603980205","length":1836},"deprecated":false},{"signature_type":"Line","target":{"file":"crypto/bio/bf_lbuf.c"},"id":"CVE-2025-68160-d7ed1c09","signature_version":"v1","source":"https://github.com/openssl/openssl/commit/68a7cd2e2816c3a02f4d45a2ce43fc04fac97096","digest":{"line_hashes":["326706324675548840343059491432175579308","114844763854417187951168206090197510366","167345785719281904993519213285676239194","257263426464193822686404804161157532412","50859066439319194516902197275909064518","18456403878150118977756109076675068777","52375315159804342268105767276256543041","58506114754643604034222004329137803376"],"threshold":0.9},"deprecated":false},{"signature_type":"Function","deprecated":false,"id":"CVE-2025-68160-ddc49f75","signature_version":"v1","source":"https://github.com/openssl/openssl/commit/68a7cd2e2816c3a02f4d45a2ce43fc04fac97096","digest":{"function_hash":"91143076051739638548163354092603980205","length":1836},"target":{"file":"crypto/bio/bf_lbuf.c","function":"linebuffer_write"}},{"signature_type":"Line","deprecated":false,"id":"CVE-2025-68160-e051451f","signature_version":"v1","source":"https://github.com/openssl/openssl/commit/e818b74be2170fbe957a07b0da4401c2b694b3b8","digest":{"line_hashes":["251633914150035957322733061977107206211","338514574181828579838011565939158652696","76638288692106140328510055542557597351","142922657400765574308962710386922248045","71649992455794854055653842592139575350","65527166711110472566013424527579064967","253196866009476977787139000804413898733","172177136897997206866313011107384691461"],"threshold":0.9},"target":{"file":"crypto/opensslv.h"}}],"vanir_signatures_modified":"2026-04-11T02:59:58Z","source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-68160.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}