{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"important"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2025-24975","title":"Title"},{"category":"description","text":"Firebird is a relational database. Prior to snapshot versions 4.0.6.3183, 5.0.2.1610, and 6.0.0.609, Firebird is vulnerable if ExtConnPoolSize is not set equal to 0. If connections stored in ExtConnPool are not verified for presence and suitability of the CryptCallback interface is used when created versus what is available could result in a segfault in the server process. Encrypted databases, accessed by execute statement on external, may be accessed later by an attachment missing a key to that database. In a case when execute statement are chained, segfault may happen. Additionally, the segfault may affect unencrypted databases. This issue has been patched in snapshot versions 4.0.6.3183, 5.0.2.1610, and 6.0.0.609 and point releases 4.0.6 and 5.0.2. A workaround for this issue involves setting ExtConnPoolSize equal to 0 in firebird.conf.","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2025-24975","url":"https://www.suse.com/security/cve/CVE-2025-24975"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 1248144 for CVE-2025-24975","url":"https://bugzilla.suse.com/1248144"}],"title":"SUSE CVE CVE-2025-24975","tracking":{"current_release_date":"2025-08-25T23:31:35Z","generator":{"date":"2025-08-15T23:23:19Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2025-24975","initial_release_date":"2025-08-15T23:23:19Z","revision_history":[{"date":"2025-08-15T23:23:19Z","number":"2","summary":"Current version"},{"date":"2025-08-25T23:31:35Z","number":"3","summary":"Current version"}],"status":"interim","version":"3"}},"product_tree":{"branches":[{"branches":[{"branches":[{"category":"product_name","name":"SUSE Linux Enterprise Module for Package Hub 15 SP6","product":{"name":"SUSE Linux Enterprise Module for Package Hub 15 SP6","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP6","product_identification_helper":{"cpe":"cpe:/o:suse:packagehub:15:sp6"}}},{"category":"product_name","name":"SUSE Linux Enterprise Module for Package Hub 15 SP7","product":{"name":"SUSE Linux Enterprise Module for Package Hub 15 SP7","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP7","product_identification_helper":{"cpe":"cpe:/o:suse:packagehub:15:sp7"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 12 SP5-LTSS","product":{"name":"SUSE Linux Enterprise Server 12 SP5-LTSS","product_id":"SUSE Linux Enterprise Server 12 SP5-LTSS","product_identification_helper":{"cpe":"cpe:/o:suse:sles-ltss:12:sp5"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 12 SP5-LTSS Extended Security","product":{"name":"SUSE Linux Enterprise Server 12 SP5-LTSS Extended Security","product_id":"SUSE Linux Enterprise Server 12 SP5-LTSS Extended Security","product_identification_helper":{"cpe":"cpe:/o:suse:sles-ltss-extended-security:12:sp5"}}},{"category":"product_name","name":"openSUSE Leap 15.6","product":{"name":"openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6","product_identification_helper":{"cpe":"cpe:/o:opensuse:leap:15.6"}}},{"category":"product_version","name":"firebird","product":{"name":"firebird","product_id":"firebird","product_identification_helper":{"cpe":"cpe:2.3:a:firebirdsql:firebird:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/firebird@?upstream=firebird.src.rpm"}}},{"category":"product_version","name":"firebird-doc","product":{"name":"firebird-doc","product_id":"firebird-doc","product_identification_helper":{"cpe":"cpe:2.3:a:firebirdsql:firebird:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/firebird-doc@?upstream=firebird.src.rpm"}}},{"category":"product_version","name":"firebird-examples","product":{"name":"firebird-examples","product_id":"firebird-examples","product_identification_helper":{"cpe":"cpe:2.3:a:firebirdsql:firebird:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/firebird-examples@?upstream=firebird.src.rpm"}}},{"category":"product_version","name":"firebird-server","product":{"name":"firebird-server","product_id":"firebird-server","product_identification_helper":{"cpe":"cpe:2.3:a:firebirdsql:firebird:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/firebird-server@?upstream=firebird.src.rpm"}}},{"category":"product_version","name":"firebird-utils","product":{"name":"firebird-utils","product_id":"firebird-utils","product_identification_helper":{"cpe":"cpe:2.3:a:firebirdsql:firebird:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/firebird-utils@?upstream=firebird.src.rpm"}}},{"category":"product_version","name":"libfbclient-devel","product":{"name":"libfbclient-devel","product_id":"libfbclient-devel","product_identification_helper":{"cpe":"cpe:2.3:a:firebirdsql:firebird:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/libfbclient-devel@?upstream=firebird.src.rpm"}}},{"category":"product_version","name":"libfbclient2","product":{"name":"libfbclient2","product_id":"libfbclient2","product_identification_helper":{"cpe":"cpe:2.3:a:firebirdsql:firebird:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/libfbclient2@?upstream=firebird.src.rpm"}}},{"category":"product_version","name":"libfbclient2-32bit","product":{"name":"libfbclient2-32bit","product_id":"libfbclient2-32bit","product_identification_helper":{"cpe":"cpe:2.3:a:firebirdsql:firebird:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/libfbclient2-32bit@?upstream=firebird.src.rpm"}}},{"category":"product_version","name":"libib_util","product":{"name":"libib_util","product_id":"libib_util","product_identification_helper":{"cpe":"cpe:2.3:a:firebirdsql:firebird:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/libib_util@?upstream=firebird.src.rpm"}}},{"category":"product_version","name":"libib_util-32bit","product":{"name":"libib_util-32bit","product_id":"libib_util-32bit","product_identification_helper":{"cpe":"cpe:2.3:a:firebirdsql:firebird:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/libib_util-32bit@?upstream=firebird.src.rpm"}}},{"category":"product_version","name":"libib_util-devel","product":{"name":"libib_util-devel","product_id":"libib_util-devel","product_identification_helper":{"cpe":"cpe:2.3:a:firebirdsql:firebird:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/libib_util-devel@?upstream=firebird.src.rpm"}}}],"category":"product_family","name":"SUSE Linux Enterprise"}],"category":"vendor","name":"SUSE"}],"relationships":[{"category":"default_component_of","full_product_name":{"name":"firebird as component of SUSE Linux Enterprise Module for Package Hub 15 SP6","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP6:firebird"},"product_reference":"firebird","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"firebird-examples as component of SUSE Linux Enterprise Module for Package Hub 15 SP6","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP6:firebird-examples"},"product_reference":"firebird-examples","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"firebird-server as component of SUSE Linux Enterprise Module for Package Hub 15 SP6","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP6:firebird-server"},"product_reference":"firebird-server","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"firebird-utils as component of SUSE Linux Enterprise Module for Package Hub 15 SP6","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP6:firebird-utils"},"product_reference":"firebird-utils","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"libfbclient-devel as component of SUSE Linux Enterprise Module for Package Hub 15 SP6","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfbclient-devel"},"product_reference":"libfbclient-devel","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"libfbclient2 as component of SUSE Linux Enterprise Module for Package Hub 15 SP6","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP6:libfbclient2"},"product_reference":"libfbclient2","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"libib_util as component of SUSE Linux Enterprise Module for Package Hub 15 SP6","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP6:libib_util"},"product_reference":"libib_util","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"libib_util-devel as component of SUSE Linux Enterprise Module for Package Hub 15 SP6","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP6:libib_util-devel"},"product_reference":"libib_util-devel","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP6"},{"category":"default_component_of","full_product_name":{"name":"firebird as component of SUSE Linux Enterprise Module for Package Hub 15 SP7","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP7:firebird"},"product_reference":"firebird","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"firebird-examples as component of SUSE Linux Enterprise Module for Package Hub 15 SP7","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP7:firebird-examples"},"product_reference":"firebird-examples","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"firebird-server as component of SUSE Linux Enterprise Module for Package Hub 15 SP7","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP7:firebird-server"},"product_reference":"firebird-server","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"firebird-utils as component of SUSE Linux Enterprise Module for Package Hub 15 SP7","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP7:firebird-utils"},"product_reference":"firebird-utils","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"libfbclient-devel as component of SUSE Linux Enterprise Module for Package Hub 15 SP7","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfbclient-devel"},"product_reference":"libfbclient-devel","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"libfbclient2 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP7:libfbclient2"},"product_reference":"libfbclient2","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"libib_util as component of SUSE Linux Enterprise Module for Package Hub 15 SP7","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP7:libib_util"},"product_reference":"libib_util","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"libib_util-devel as component of SUSE Linux Enterprise Module for Package Hub 15 SP7","product_id":"SUSE Linux Enterprise Module for Package Hub 15 SP7:libib_util-devel"},"product_reference":"libib_util-devel","relates_to_product_reference":"SUSE Linux Enterprise Module for Package Hub 15 SP7"},{"category":"default_component_of","full_product_name":{"name":"firebird as component of SUSE Linux Enterprise Server 12 SP5-LTSS","product_id":"SUSE Linux Enterprise Server 12 SP5-LTSS:firebird"},"product_reference":"firebird","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP5-LTSS"},{"category":"default_component_of","full_product_name":{"name":"firebird as component of SUSE Linux Enterprise Server 12 SP5-LTSS Extended Security","product_id":"SUSE Linux Enterprise Server 12 SP5-LTSS Extended Security:firebird"},"product_reference":"firebird","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP5-LTSS Extended Security"},{"category":"default_component_of","full_product_name":{"name":"firebird as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:firebird"},"product_reference":"firebird","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"firebird-doc as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:firebird-doc"},"product_reference":"firebird-doc","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"firebird-examples as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:firebird-examples"},"product_reference":"firebird-examples","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"firebird-server as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:firebird-server"},"product_reference":"firebird-server","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"firebird-utils as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:firebird-utils"},"product_reference":"firebird-utils","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"libfbclient-devel as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:libfbclient-devel"},"product_reference":"libfbclient-devel","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"libfbclient2 as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:libfbclient2"},"product_reference":"libfbclient2","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"libfbclient2-32bit as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:libfbclient2-32bit"},"product_reference":"libfbclient2-32bit","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"libib_util as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:libib_util"},"product_reference":"libib_util","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"libib_util-32bit as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:libib_util-32bit"},"product_reference":"libib_util-32bit","relates_to_product_reference":"openSUSE Leap 15.6"},{"category":"default_component_of","full_product_name":{"name":"libib_util-devel as component of openSUSE Leap 15.6","product_id":"openSUSE Leap 15.6:libib_util-devel"},"product_reference":"libib_util-devel","relates_to_product_reference":"openSUSE Leap 15.6"}]},"vulnerabilities":[{"cve":"CVE-2025-24975","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2025-24975"}],"notes":[{"category":"general","text":"Firebird is a relational database. Prior to snapshot versions 4.0.6.3183, 5.0.2.1610, and 6.0.0.609, Firebird is vulnerable if ExtConnPoolSize is not set equal to 0. If connections stored in ExtConnPool are not verified for presence and suitability of the CryptCallback interface is used when created versus what is available could result in a segfault in the server process. Encrypted databases, accessed by execute statement on external, may be accessed later by an attachment missing a key to that database. In a case when execute statement are chained, segfault may happen. Additionally, the segfault may affect unencrypted databases. This issue has been patched in snapshot versions 4.0.6.3183, 5.0.2.1610, and 6.0.0.609 and point releases 4.0.6 and 5.0.2. A workaround for this issue involves setting ExtConnPoolSize equal to 0 in firebird.conf.","title":"CVE description"}],"product_status":{"known_not_affected":["SUSE Linux Enterprise Module for Package Hub 15 SP6:firebird","SUSE Linux Enterprise Module for Package Hub 15 SP6:firebird-examples","SUSE Linux Enterprise Module for Package Hub 15 SP6:firebird-server","SUSE Linux Enterprise Module for Package Hub 15 SP6:firebird-utils","SUSE Linux Enterprise Module for Package Hub 15 SP6:libfbclient-devel","SUSE Linux Enterprise Module for Package Hub 15 SP6:libfbclient2","SUSE Linux Enterprise Module for Package Hub 15 SP6:libib_util","SUSE Linux Enterprise Module for Package Hub 15 SP6:libib_util-devel","SUSE Linux Enterprise Module for Package Hub 15 SP7:firebird","SUSE Linux Enterprise Module for Package Hub 15 SP7:firebird-examples","SUSE Linux Enterprise Module for Package Hub 15 SP7:firebird-server","SUSE Linux Enterprise Module for Package Hub 15 SP7:firebird-utils","SUSE Linux Enterprise Module for Package Hub 15 SP7:libfbclient-devel","SUSE Linux Enterprise Module for Package Hub 15 SP7:libfbclient2","SUSE Linux Enterprise Module for Package Hub 15 SP7:libib_util","SUSE Linux Enterprise Module for Package Hub 15 SP7:libib_util-devel","SUSE Linux Enterprise Server 12 SP5-LTSS Extended Security:firebird","SUSE Linux Enterprise Server 12 SP5-LTSS:firebird","openSUSE Leap 15.6:firebird","openSUSE Leap 15.6:firebird-doc","openSUSE Leap 15.6:firebird-examples","openSUSE Leap 15.6:firebird-server","openSUSE Leap 15.6:firebird-utils","openSUSE Leap 15.6:libfbclient-devel","openSUSE Leap 15.6:libfbclient2","openSUSE Leap 15.6:libfbclient2-32bit","openSUSE Leap 15.6:libib_util","openSUSE Leap 15.6:libib_util-32bit","openSUSE Leap 15.6:libib_util-devel"]},"references":[{"category":"external","summary":"CVE-2025-24975","url":"https://www.suse.com/security/cve/CVE-2025-24975"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 1248144 for CVE-2025-24975","url":"https://bugzilla.suse.com/1248144"}],"threats":[{"category":"impact","date":"2025-08-15T16:01:17Z","details":"important"}],"title":"CVE-2025-24975"}]}