CVE-2026-47222
NanaZip (derivative of 7-Zip) contains a heap out-of-bounds read in the AVB vbmeta image parser (via AvbHandler) affecting versions 3.0.1000.0 through before 6.0.1698.0. An unsigned integer underflow in a bounds check lets attacker-controlled value_num_bytes pass validation, causing AddNameToStri...