CVE-2026-47320
Deferred Deferred - Pending Action
Pointer Manipulation and Recursion Flaw in rlottie

Publication date: 2026-06-04

Last updated on: 2026-06-04

Assigner: Samsung TV & Appliance

Description
Access of uninitialized pointer, Uncontrolled Recursion vulnerability in Samsung Open Source rlottie allows Pointer Manipulation, Oversized Serialized Data Payloads. This issue affects rlottie: before eae37633fda13ac05b25c6c95aacea4bc33c80a3.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-04
Last Modified
2026-06-04
Generated
2026-06-24
AI Q&A
2026-06-04
EPSS Evaluated
2026-06-23
NVD
CVE-2026-47320
EUVD
EUVD-2026-34232
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
samsung rlottie to eae37633fda13ac05b25c6c95aacea4bc33c80a3 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-824 The product accesses or uses a pointer that has not been initialized.
CWE-674 The product does not properly control the amount of recursion that takes place, consuming excessive resources, such as allocated memory or the program stack.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Impact Analysis

This vulnerability can lead to application crashes due to null pointer dereferences or stack overflows caused by uncontrolled recursion. Such crashes can result in denial of service, potentially disrupting the normal operation of software using the rlottie library.

Detection Guidance

There is no specific information provided about detection methods or commands to identify this vulnerability on a network or system.

Executive Summary

CVE-2026-47320 is a vulnerability in the Samsung rlottie library involving two main issues: a null pointer dereference and uncontrolled recursion. The null pointer dereference occurs in the PathData specialization of the Property::value() method when animation keyframes are discarded during parsing, leaving an empty frames array that is accessed without proper checks. The uncontrolled recursion happens due to cyclic parent layer references in the Layer::matrix() method, which can cause a stack overflow by recursively traversing parent layers without limits.

The fix involves adding checks to prevent accessing empty frames and limiting recursion depth to 64 levels, returning an identity matrix if exceeded, thus preventing crashes caused by these issues.

Mitigation Strategies

To mitigate the vulnerability in Samsung Open Source rlottie (CVE-2026-47320), you should update the rlottie library to a version that includes the security fix addressing the null pointer dereference and uncontrolled recursion issues.

The fix involves applying patches that add checks for empty frames before accessing them and limit recursion depth to prevent stack overflow.

Therefore, immediate steps include:

  • Update rlottie to a commit after eae37633fda13ac05b25c6c95aacea4bc33c80a3 where the fix is applied.
  • If updating is not immediately possible, consider restricting or sanitizing inputs that involve serialized animation data to avoid triggering the vulnerability.
Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-47320. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart