CVE-2026-2100

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions libp11-kit versions prior to 0.26.2-1.1

Description The software contains a NULL dereference issue occurring via the C DeriveKey function when provided with specific NULL parameters.

Recommendations Update to libp11-kit version 0.26.2-1.1 or later.

Fix

DoS

Access of Uninitialized Pointer

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

ALSA-2026:18143

ALSA-2026:18599

CVE-2026-2100

ECHO-7889-82B6-071E

OPENSUSE-SU-2026:10169-1

RHSA-2026:18143

RHSA-2026:18599

RHSA-2026:7065

Libp11-Kit