CVE-2026-9149

Discovered by AISLEPUBLISHEDCWE-122

Description

A flaw was found in libsolv. This heap buffer overflow vulnerability occurs when a victim processes a specially crafted `.solv` file containing negative size values in the `repo_add_solv` function. This leads to an undersized memory allocation and a subsequent out-of-bounds write. An attacker could exploit this to cause a denial of service (DoS).

CVSS Base Scores

CVSS v3.1(Primary)
6.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersionStatus
Red HatRed Hat Enterprise Linux 100:0.7.33-5.el10_2unaffected
Red HatRed Hat Enterprise Linux 100.7.38-2.hum1
Red HatRed Hat Hardened Images0:0.7.33-5.el10_2unaffected
Red HatRed Hat Hardened Images0.7.38-2.hum1
Red HatRed Hat Enterprise Linux 70:0.7.33-5.el10_2unaffected
Red HatRed Hat Enterprise Linux 70.7.38-2.hum1
Red HatRed Hat Enterprise Linux 80:0.7.33-5.el10_2unaffected
Red HatRed Hat Enterprise Linux 80.7.38-2.hum1
Red HatRed Hat Enterprise Linux 90:0.7.33-5.el10_2unaffected
Red HatRed Hat Enterprise Linux 90.7.38-2.hum1
Red HatRed Hat OpenShift Container Platform 40:0.7.33-5.el10_2unaffected
Red HatRed Hat OpenShift Container Platform 40.7.38-2.hum1
Red HatRed Hat Satellite 60:0.7.33-5.el10_2unaffected
Red HatRed Hat Satellite 60.7.38-2.hum1
Red HatRed Hat Update Infrastructure 4 for Cloud Providers0:0.7.33-5.el10_2unaffected
Red HatRed Hat Update Infrastructure 4 for Cloud Providers0.7.38-2.hum1

Credits

  • This issue was discovered by AISLE in partnership with Red Hat.

References