libsolv.so is vulnerable to denial of service. The vulnerability exists due to a heap-based buffer overflow in solver_solve
function in solver.c
as it doesn’t handle size when setting and resetting memory which leads to an application crash.
CPE | Name | Operator | Version |
---|---|---|---|
libsolv.so | le | 1 | |
libsolv.so | le | 1 |