CVE-2025-48431 in Thrift
要約
〜によって MITRE • 2026年04月28日
Mismatched Memory Management Routines vulnerability in Apache Thrift c_glib language bindings.
This issue affects Apache Thrift: before 0.23.0.
Users are recommended to upgrade to version 0.23.0, which fixes the issue.
Description: Specially crafted requests can crash an c_glib-based Thrift server with a clean but fatal "free(): invalid pointer" error message.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.