CVE-2025-67125

Published: Jan 23, 2026

Modified: Jan 23, 2026

PUBLISHED

Description

A signed integer overflow in docopt.cpp v0.6.2 (LeafPattern::match in docopt_private.h) when merging occurrence counters (e.g., default LONG_MAX + first user "-v/--verbose") can cause counter wrap (negative/unbounded semantics) and lead to logic/policy bypass in applications that rely on occurrence-based limits, rate-gating, or safety toggles. In hardened builds (e.g., UBSan or -ftrapv), the overflow may also result in process abort (DoS).

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://gist.github.com/thesmartshadow/672afe8828844c833f46f8ebe2f5f3bd

https://github.com/docopt/docopt.cpp

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-67125

Description

Affected Products

References