A flaw was found in libsolv. This heap buffer overflow occurs during the decompression of attacker-controlled compressed data within .solv files due to insufficient input validation. An attacker can provide a specially crafted .solv file, which, when processed by a vulnerable application, can lead to out-of-bounds memory access. This could result in information disclosure, alteration of program execution, or a denial of service.
0.6.35-2ubuntu10.6.35-2ubuntu20.6.36-10.6.36-20.7.17-20.7.20-10.7.20-1build20.7.20-1ubuntu0.22.04.10.7.24-10.7.25-10.7.26-10.7.26-20.7.27-10.7.27-20.7.27-2build10.7.28-10.7.28-1build10.7.28-1build20.7.31-1build10.7.32-10.7.32-10.7.35-10.7.35-1build10.6.11-10.6.11-1.10.6.11-1.1ubuntu0.1~esm10.6.11-1build10.6.28-2build10.6.30-1build10.6.30-1ubuntu0.1~esm1Exploitability
AV:LAC:LPR:NUI:RScope
S:UImpact
C:HI:HA:HCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H