Arbitrary writes via tarfile realpath overflow — CVE-2025-4517

Summary

Advisory CVE-2025-4517. Arbitrary writes via tarfile realpath overflow Vendor: Microsoft. Source: MSRC. Threat: critical. CVSS 9.4. See the official advisory for details.

What to do

General, cautious steps (verify details in the official source):

• Prioritize patching or mitigation immediately (treat as actively risky).
• Identify affected product versions in your inventory and verify whether you are impacted.
• Apply vendor patches/updates or recommended mitigations as soon as available.
• Read the official advisory for exact affected versions and remediation steps.

Official advisory

Read the official source

Related advisories

• ClamAV PDF Scanning Buffer Overflow Vulnerability CVE-2025-20260
• Libxml: heap use after free (uaf) leads to denial of service (dos) CVE-2025-49794
• Libxml: type confusion leads to denial of service (dos) CVE-2025-49796
• M365 Copilot Information Disclosure Vulnerability CVE-2025-32711
• Perl CryptX before version 0.087 contains a dependency that may be susceptible to an integer overflow CVE-2025-40914
• Power Automate Elevation of Privilege Vulnerability CVE-2025-47966
• Sudo before 1.9.17p1 allows local users to obtain root access CVE-2025-32463
• __legitimize_mnt(): check for MNT_SYNC_UMOUNT should be under mount_lock CVE-2025-38058
• .NET and Visual Studio Remote Code Execution Vulnerability CVE-2025-30399
• ALSA: pcm: Fix race of buffer access at PCM OSS layer CVE-2025-38078
• ARM: dts: qcom: replace gcc PXO with pxo_board fixed clock CVE-2022-50195
• arm64: set UXN on swapper page tables CVE-2022-50232