CVE-2026-53432

medium Red Hat
CVSS v3 Base Score
5.0
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H
Attack Characteristics
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
Required
Confidentiality
None
Integrity
None
Availability
High
Published: June 30, 2026 (9 days ago)
Last Modified: June 30, 2026
Vendor: Red Hat
Source: REDHAT

Description

A flaw was found in fzf. An integer overflow vulnerability exists in the FuzzyMatchV2 function when processing exceptionally long input lines and patterns. This can lead to the application terminating unexpectedly with a non-recoverable panic, resulting in a Denial of Service (DoS). A local user could exploit this by providing specially crafted input.

CWE

CWE-190

References