NIXPKGS-2026-1020
GitHub issue
published on
Permalink
CVE-2026-40025
4.4 MEDIUM
- CVSS version: 3.1
- Attack vector (AV): LOCAL
- Attack complexity (AC): LOW
- Privileges required (PR): NONE
- User interaction (UI): REQUIRED
- Scope (S): UNCHANGED
- Confidentiality impact (C): LOW
- Integrity impact (I): NONE
- Availability impact (A): LOW
by @LeSuisse Activity log
- Created automatic suggestion
- @LeSuisse ignored
- @LeSuisse accepted
- @LeSuisse published on GitHub
Sleuth Kit APFS Keybag Parser Out-of-Bounds Read
The Sleuth Kit through 4.14.0 contains an out-of-bounds read vulnerability in the APFS filesystem keybag parser where the wrapped_key_parser class follows attacker-controlled length fields without bounds checking, causing heap reads past the allocated buffer. An attacker can craft a malicious APFS disk image that triggers information disclosure or crashes when processed by any Sleuth Kit tool that parses APFS volumes.
References
-
Pull Request product
-
Patch Commit patch
Ignored references (2)
-
Mobasi Sentinel Vulnerability Index vendor-advisory
-
VulnCheck Advisory: Sleuth Kit APFS Keybag Parser Out-of-Bounds Read third-party-advisory
Affected products
sleuthkit
- ==8b9c9e7d493bd68624f3b1a3963edd45c3ff7611
- =<4.14.0
Package maintainers
-
@gfrascadorio Galois <gfrascadorio@tutanota.com>
-
@7c6f434c Michael Raskin <7c6f434c@mail.ru>