A flaw was found in libsolv. This heap buffer overflow...
High severity
Unreviewed
Published
May 26, 2026
to the GitHub Advisory Database
•
Updated Jul 15, 2026
Description
Published by the National Vulnerability Database
May 26, 2026
Published to the GitHub Advisory Database
May 26, 2026
Last updated
Jul 15, 2026
A flaw was found in libsolv. This heap buffer overflow occurs during the decompression of attacker-controlled compressed data within
.solvfiles due to insufficient input validation. An attacker can provide a specially crafted.solvfile, which, when processed by a vulnerable application, can lead to out-of-bounds memory access. This could result in information disclosure, alteration of program execution, or a denial of service.References