CVE-2026-48864
Undergoing Analysis Undergoing Analysis - In Progress
Heap Buffer Overflow in libsolv via Malicious .solv Files

Publication date: 2026-05-26

Last updated on: 2026-05-28

Assigner: Red Hat, Inc.

Description
A flaw was found in libsolv. This heap buffer overflow occurs during the decompression of attacker-controlled compressed data within `.solv` files due to insufficient input validation. An attacker can provide a specially crafted `.solv` file, which, when processed by a vulnerable application, can lead to out-of-bounds memory access. This could result in information disclosure, alteration of program execution, or a denial of service.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-26
Last Modified
2026-05-28
Generated
2026-06-16
AI Q&A
2026-05-26
EPSS Evaluated
2026-06-14
NVD
CVE-2026-48864
EUVD
EUVD-2026-31859
Affected Vendors & Products
Showing 9 associated CPEs
Vendor Product Version / Range
redhat enterprise_linux 7.0
redhat satellite 6.0
redhat enterprise_linux 8.0
redhat openshift_container_platform 4.0
redhat enterprise_linux 9.0
redhat update_infrastructure 4
redhat enterprise_linux 10.0
redhat hardened_images *
opensuse libsolv 0.7.36
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-787 The product writes data past the end, or before the beginning, of the intended buffer.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2026-48864 is a heap buffer overflow vulnerability in the libsolv library, specifically in the repopagestore component. It occurs during the decompression of attacker-controlled compressed data within .solv files due to insufficient input validation.

An attacker can supply a specially crafted .solv file or repository metadata that a vulnerable application processes. Because the decompression function does not properly check output length or back-reference safety, this can lead to out-of-bounds memory reads and writes.

This memory corruption flaw arises in the functions repopagestore_load_page_range and repopagestore_read_or_setup_pages, specifically in the unchecked_decompress_buf function, which fails to enforce safe decompression boundaries.

Compliance Impact

The vulnerability in libsolv can lead to information disclosure and alteration of program execution due to a heap buffer overflow. Such outcomes could potentially expose sensitive data or disrupt system integrity.

Because of the risk of sensitive information exposure and system compromise, this vulnerability could negatively impact compliance with standards and regulations like GDPR and HIPAA, which require protection of personal and health-related data.

However, the provided information does not explicitly discuss compliance implications or specific regulatory impacts.

Impact Analysis

Exploitation of this vulnerability can lead to out-of-bounds memory access, which may cause information disclosure, alteration of program execution, or denial of service.

  • Information disclosure: Sensitive process memory could be exposed.
  • Program execution alteration: Memory corruption could allow an attacker to modify the process state.
  • Denial of service: The application processing the malicious .solv file could crash or become unresponsive.

No special privileges are required for an attacker, but the victim application must process the malicious .solv content.

Detection Guidance

There is no specific information provided about detection methods or commands to identify this vulnerability on a network or system.

Mitigation Strategies

To mitigate this vulnerability, ensure that you do not process untrusted or attacker-controlled .solv files or repository metadata with vulnerable versions of libsolv.

Apply updates or patches that include the fix where compressed pages are validated before decompression using the check_decompress_buf function to enforce output length and back-reference safety.

Avoid ingesting malicious content and monitor for updates from libsolv maintainers or your software vendor to obtain fixed versions.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-48864. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart