CVE-2026-9150

🔶 medium

Summary

A flaw was found in libsolv. This stack-based buffer overflow vulnerability occurs in libsolv's Debian metadata parser when processing specially crafted Debian repository metadata. An attacker could exploit this by providing malicious SHA384 or SHA512 checksum tags, leading to memory corruption and a denial of service (DoS) in the affected system.

CVSS Score

6.5

Medium

EPSS Score

0.4

Exploit Probability

Published Date

2026-05-20

First Seen: 2026-05-21

📊 Relative Risk Intelligence

This CVE is Lower Risk - more severe than 47.8% of all 329,456 vulnerabilities in our database.

#172,059

Below average severity

Severity Percentile

🎯 CISA SSVC Assessment Updated: May 21, 2026

🔍 Exploitation Status

None

No known exploits

⚙️ Automatable

Requires human interaction

💥 Technical Impact

Partial

Limited system impact

🏆 Discovered By

This issue was discovered by Found by AISLE in partnership with Red Hat.

SSVC data provided by CISA

Last Modified 2026-06-24

Source NVD 🔗

CVSS Vector 3.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE IDs (Weakness Types)

CWE-121

📦 Affected Products 8

Vendor	Product	Status	Affected Versions
redhat	enterprise_linux	Affected	v10.0
redhat	enterprise_linux	Affected	v7.0
redhat	enterprise_linux	Affected	v8.0
redhat	enterprise_linux	Affected	v9.0
redhat	satellite	Affected	v6.0
redhat	openshift_container_platform	Affected	v4.0
opensuse	libsolv	Affected	< 0.7.36
redhat	update_infrastructure	Affected	v4

🔗 References 4

https://access.redhat.com/errata/RHSA-2026:28236

https://access.redhat.com/security/cve/CVE-2026-9150

Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=2460379

Issue Tracking Third Party Advisory

https://github.com/openSUSE/libsolv/pull/616

Issue Tracking Patch

🔗 Related CVEs 6

CVE ID	Severity	CVSS	EPSS	Summary	Published
CVE-2026-1764	🔶 medium	5.6	0.2	A flaw was found in GNOME localsearch (previously known as tracker-miners) MP3 Extractor. When processing specially craf...	2026-06-16
CVE-2026-1766	🔶 medium	5.6	0.2	A flaw was found in GNOME localsearch (previously known as tracker-miners) MP3 Extractor, specifically within the tracke...	2026-06-16
CVE-2026-1767	🔶 medium	5.6	0.2	A flaw was found in the GNOME localsearch (previously known as tracker-miners) MP3 Extractor `tracker-extract-mp3` compo...	2026-06-16
CVE-2026-11785	🔶 medium	4.3	0.2	A flaw was found in 389 Directory Server. A type confusion in the SSO token extended operation handler causes partial st...	2026-06-09
CVE-2026-11786	ℹ️ low	1.9	0.2	A flaw was found in 389 Directory Server. The LDIF parser reads past the end of a heap buffer when processing attribute ...	2026-06-09
CVE-2026-11787	🔶 medium	5.0	0.2	A flaw was found in 389 Directory Server. The ldap_utf8prev() function reads bytes before the start of a buffer without ...	2026-06-09

These CVEs affect the same products