CVE-2026-9150

Name of the Vulnerable Software and Affected Versions libsolv (affected versions not specified)

Description A stack-based buffer overflow occurs in the Debian metadata parser of libsolv when processing specially crafted Debian repository metadata. An attacker can trigger this by providing malicious SHA384 or SHA512 checksum tags, resulting in memory corruption and a denial of service (DoS).

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.