CVE-2026-9149
6.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Summary
A flaw was found in libsolv. This heap buffer overflow vulnerability occurs when a victim processes a specially crafted .solv file containing negative size values in the repo_add_solv function. This leads to an undersized memory allocation and a subsequent out-of-bounds write. An attacker could exploit this to cause a denial of service (DoS).
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Red Hat | Red Hat Enterprise Linux 10 | 0:0.7.33-5.el10_2 < * | unaffected |
| Red Hat | Red Hat Hardened Images | 0.7.38-2.hum1 < * | unaffected |
Weaknesses
- CWE-122: Heap-based Buffer Overflow
Workarounds
To mitigate this issue, avoid processing untrusted .solv files with libsolv or any applications that consume .solv input. Ensure that all .solv data processed by the system originates from trusted sources only.
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: poc
- Automatable: no
- Technical Impact: partial
Additional References
References
- https://access.redhat.com/errata/RHSA-2026:21333
- https://access.redhat.com/errata/RHSA-2026:28236
- https://access.redhat.com/security/cve/CVE-2026-9149
- https://bugzilla.redhat.com/show_bug.cgi?id=2460380
- https://github.com/openSUSE/libsolv/pull/617
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.