CVE-2026-4426
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Summary
A flaw was found in libarchive. An Undefined Behavior vulnerability exists in the zisofs decompression logic, caused by improper validation of a field (pz_log2_bs) read from ISO9660 Rock Ridge extensions. A remote attacker can exploit this by supplying a specially crafted ISO file. This can lead to incorrect memory allocation and potential application crashes, resulting in a denial-of-service (DoS) condition.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Red Hat | Red Hat Hardened Images | 3.8.7-1.hum1 < * | unaffected |
Weaknesses
- CWE-1335: Incorrect Bitwise Shift of Integer
Workarounds
To mitigate this issue, avoid processing untrusted ISO9660 images with libarchive. Restricting the sources of ISO files and ensuring they originate from trusted entities can prevent exploitation.
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://access.redhat.com/errata/RHSA-2026:8944
- https://access.redhat.com/security/cve/CVE-2026-4426
- https://bugzilla.redhat.com/show_bug.cgi?id=2449010
- https://github.com/libarchive/libarchive/pull/2897
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.