CVE-2026-5121

medium

Red Hat

EPSS Score

0.1%

Exploitation probability in 30 days

Top 84% most likely to be exploited

Published: March 30, 2026 (45 days ago)

Last Modified: March 30, 2026

Vendor: Red Hat

Source: REDHAT

Description

A flaw was found in libarchive. On 32-bit systems, an integer overflow vulnerability exists in the zisofs block pointer allocation logic. A remote attacker can exploit this by providing a specially crafted ISO9660 image, which can lead to a heap buffer overflow. This could potentially allow for arbitrary code execution on the affected system.

Affected Products

Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 7Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9Red Hat OpenShift Container Platform 4

References

🔗 www.cve.org 🔗 nvd.nist.gov 🔗 github.com

CVE-2026-5121

Vulnerability Report

Description

Affected Products

References