CVE - CVE-2025-1470

CVE-ID
CVE-2025-1470	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
In Eclipse OMR, from the initial contribution to version 0.4.0, some OMR internal port library and utilities consumers of z/OS atoe functions do not check their return values for NULL memory pointers or for memory allocation failures. This can lead to NULL pointer dereference crashes. Beginning in version 0.5.0, internal OMR consumers of atoe functions handle NULL return values and memory allocation failures correctly.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:https://github.com/eclipse-omr/omr/pull/7655 URL:https://github.com/eclipse-omr/omr/pull/7655 MISC:https://github.com/eclipse-omr/omr/pull/7663 URL:https://github.com/eclipse-omr/omr/pull/7663 MISC:https://gitlab.eclipse.org/security/cve-assignement/-/issues/54 URL:https://gitlab.eclipse.org/security/cve-assignement/-/issues/54
Assigning CNA
Eclipse Foundation
Date Record Created
20250219	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20250219)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)