PT-2026-4868 · Dlib+1 · Dlib+1
Titan Team
·
Published
2026-01-27
·
Updated
2026-01-27
·
CVE-2026-24799
CVSS v4.0
5.2
Medium
| Vector | AV:L/AC:L/AT:N/PR:L/UI:A/VC:N/VI:L/VA:H/SC:N/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:Y/R:U/V:C/RE:L/U:Amber |
Name of the Vulnerable Software and Affected Versions
dlib versions prior to 19.24.9
Description
An out-of-bounds write issue exists in the dlib library, specifically within the zlib modules (dlib/external/zlib). The issue is a buffer copy without checking the size of the input, often referred to as a classic buffer overflow, located in the inflate.C program file.
Recommendations
Update to dlib version 19.24.9 or later.
Fix
Memory Corruption
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Dlib
Zlib