CVE-2025-6966 MEDIUM

CVE-2025-6966: Null-pointer dereference in python-apt TagSection.keys()

Vendor Canonical

Product python-apt

Weakness CWE-476

Published December 5, 2025

Last update December 15, 2025

View on NVD All CVEs

CVSS base score

6.9/10

Attack vector Local

Attack complexity Low

Privileges required None

User interaction None

Confidentiality —

Integrity —

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

Description

NULL pointer dereference in TagSection.keys() in python-apt on APT-based Linux systems allows a local attacker to cause a denial of service (process crash) via a crafted deb822 file with a malformed non-UTF-8 key.

Key dates

Disclosure timeline

December 5, 2025 CVE published

December 15, 2025 Record updated

Identifiers

CVE CVE-2025-6966

CWE CWE-476

CVSS 6.9 / MEDIUM

Affected versions

Vendor Canonical

Product python-apt

Affected ≥ 3.0 and < 3.0.0ubuntu1.1

Vendor Canonical

Product python-apt

Affected ≥ 3.0 and < 3.0.0ubuntu0.25.04.1

Vendor Canonical

Product python-apt

Affected ≥ 2.7 and < 2.7.7ubuntu5.1

Vendor Canonical

Product python-apt

Affected ≥ 2.4 and < 2.4.0ubuntu4.1

Vendor Canonical

Product python-apt

Affected ≥ 2.0 and < 2.0.1ubuntu0.20.04.1+esm1

Vendor Canonical

Product python-apt

Affected ≥ 1.6 and < 1.6.6ubuntu0.1~esm1

Vendor Canonical

Product python-apt

Affected ≥ 1.1 and < 1.1.0~beta1ubuntu0.16.04.12+esm1

Vendor Canonical

Product python-apt

Affected < 0.9.3.5ubuntu3+esm5