CVE-2026-47320
Pointer Manipulation and Recursion Flaw in rlottie
Publication date: 2026-06-04
Last updated on: 2026-06-04
Assigner: Samsung TV & Appliance
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| samsung | rlottie | to eae37633fda13ac05b25c6c95aacea4bc33c80a3 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-824 | The product accesses or uses a pointer that has not been initialized. |
| CWE-674 | The product does not properly control the amount of recursion that takes place, consuming excessive resources, such as allocated memory or the program stack. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2026-47320 is a vulnerability in the Samsung rlottie library involving two main issues: a null pointer dereference and uncontrolled recursion. The null pointer dereference occurs in the PathData specialization of the Property::value() method when animation keyframes are discarded during parsing, leaving an empty frames array that is accessed without proper checks. The uncontrolled recursion happens due to cyclic parent layer references in the Layer::matrix() method, which can cause a stack overflow by recursively traversing parent layers without limits.
The fix involves adding checks to prevent accessing empty frames and limiting recursion depth to 64 levels, returning an identity matrix if exceeded, thus preventing crashes caused by these issues.
How can this vulnerability impact me? :
This vulnerability can lead to application crashes due to null pointer dereferences or stack overflows caused by uncontrolled recursion. Such crashes can result in denial of service, potentially disrupting the normal operation of software using the rlottie library.
What immediate steps should I take to mitigate this vulnerability?
To mitigate the vulnerability in Samsung Open Source rlottie (CVE-2026-47320), you should update the rlottie library to a version that includes the security fix addressing the null pointer dereference and uncontrolled recursion issues.
The fix involves applying patches that add checks for empty frames before accessing them and limit recursion depth to prevent stack overflow.
Therefore, immediate steps include:
- Update rlottie to a commit after eae37633fda13ac05b25c6c95aacea4bc33c80a3 where the fix is applied.
- If updating is not immediately possible, consider restricting or sanitizing inputs that involve serialized animation data to avoid triggering the vulnerability.
How can this vulnerability be detected on my network or system? Can you suggest some commands?
There is no specific information provided about detection methods or commands to identify this vulnerability on a network or system.