CVE-2025-8734

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://drive.google.com/file/d/123Qe44FaC-GP88dWNl9-6H4jLWUcXYNZ/view?usp=drive_link", "name": "https://drive.google.com/file/d/123Qe44FaC-GP88dWNl9-6H4jLWUcXYNZ/view?usp=drive_link", "tags": [], "refsource": ""}, {"url": "https://github.com/akimd/bison/issues/115", "name": "https://github.com/akimd/bison/issues/115", "tags": [], "refsource": ""}, {"url": "https://vuldb.com/?ctiid.319230", "name": "VDB-319230 | CTI Indicators (IOB, IOC, IOA)", "tags": [], "refsource": ""}, {"url": "https://vuldb.com/?id.319230", "name": "VDB-319230 | GNU Bison scan-code.c code_free double free", "tags": [], "refsource": ""}, {"url": "https://vuldb.com/?submit.622300", "name": "Submit #622300 | GNU Bison Bison the newest master(2ceaf03-Jul10 in https://cgit.git.savannah.gnu.org/cgit/bison.git) Memory Corruption Vulnerability (Double Free)", "tags": [], "refsource": ""}, {"url": "https://www.gnu.org/", "name": "https://www.gnu.org/", "tags": [], "refsource": ""}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "A vulnerability has been found in GNU Bison up to 3.8.2. This impacts the function code_free of the file src/scan-code.c. The manipulation leads to double free. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. The actual existence of this vulnerability is currently in question. The issue could not be reproduced from a GNU Bison 3.8.2 tarball run in a Fedora 42 container."}]}, "problemtype": {"problemtype_data": [{"description": []}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2025-8734", "ASSIGNER": "cna@vuldb.com"}}, "impact": {}, "publishedDate": "2025-08-08T18:15Z", "configurations": {"nodes": [], "CVE_data_version": "4.0"}, "lastModifiedDate": "2025-08-19T05:15Z"}