What is CVE-2026-12725?

CVE-2026-12725 is a medium-severity vulnerability in Red Hat Enterprise Linux 10, classified under Heap-based Buffer Overflow. CVSS score: 5.9/10. Published 2026-06-22.

How severe is CVE-2026-12725?

Medium severity. CVSS v3 base score is 5.9 out of 10.

Buffer overflow in Red Hat Enterprise Linux 10

CVE-2026-12725

A heap-based buffer overflow was found in dnsmasq. When DNSSEC validation and query logging are both enabled, logging of DS or DNSKEY replies containing unsupported algorithm or digest types can cause dnsmasq to write past the end of an in…

Vulnerability class: Buffer Overflow

CVSS v3 metric

CVSS v3 base score 5.9 (Medium). Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H.

Affected products

Red Hat Enterprise Linux 10
Red Hat Enterprise Linux 6
Red Hat Enterprise Linux 7
Red Hat Enterprise Linux 8
Red Hat Enterprise Linux 9
Red Hat Openshift Container Platform 4

Weakness classification (CWE)

CWE-122 — Heap-based Buffer Overflow

References

secalert@redhat.com (x_refsource_REDHAT, vdb-entry)
secalert@redhat.com (x_refsource_REDHAT, issue-tracking)

Frequently asked questions

What is CVE-2026-12725?: CVE-2026-12725 is a medium-severity vulnerability in Red Hat Enterprise Linux 10, classified under Heap-based Buffer Overflow. CVSS score: 5.9/10. Published 2026-06-22.
How severe is CVE-2026-12725?: Medium severity. CVSS v3 base score is 5.9 out of 10.