CVE-2026-48864
Heap Buffer Overflow in libsolv via Malicious .solv Files
Publication date: 2026-05-26
Last updated on: 2026-05-26
Assigner: Red Hat, Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-787 | The product writes data past the end, or before the beginning, of the intended buffer. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2026-48864 is a heap buffer overflow vulnerability in the libsolv library, specifically in the repopagestore component. It occurs during the decompression of attacker-controlled compressed data within .solv files due to insufficient input validation.
An attacker can supply a specially crafted .solv file or repository metadata that a vulnerable application processes. Because the decompression function does not properly check output length or back-reference safety, this can lead to out-of-bounds memory reads and writes.
This memory corruption flaw arises in the functions repopagestore_load_page_range and repopagestore_read_or_setup_pages, specifically in the unchecked_decompress_buf function, which fails to enforce safe decompression boundaries.
How can this vulnerability impact me? :
Exploitation of this vulnerability can lead to out-of-bounds memory access, which may cause information disclosure, alteration of program execution, or denial of service.
- Information disclosure: Sensitive process memory could be exposed.
- Program execution alteration: Memory corruption could allow an attacker to modify the process state.
- Denial of service: The application processing the malicious .solv file could crash or become unresponsive.
No special privileges are required for an attacker, but the victim application must process the malicious .solv content.
How can this vulnerability be detected on my network or system? Can you suggest some commands?
There is no specific information provided about detection methods or commands to identify this vulnerability on a network or system.
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, ensure that you do not process untrusted or attacker-controlled .solv files or repository metadata with vulnerable versions of libsolv.
Apply updates or patches that include the fix where compressed pages are validated before decompression using the check_decompress_buf function to enforce output length and back-reference safety.
Avoid ingesting malicious content and monitor for updates from libsolv maintainers or your software vendor to obtain fixed versions.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
The vulnerability in libsolv can lead to information disclosure and alteration of program execution due to a heap buffer overflow. Such outcomes could potentially expose sensitive data or disrupt system integrity.
Because of the risk of sensitive information exposure and system compromise, this vulnerability could negatively impact compliance with standards and regulations like GDPR and HIPAA, which require protection of personal and health-related data.
However, the provided information does not explicitly discuss compliance implications or specific regulatory impacts.