GHSA-p6v6-grg5-r9mwLowCVSS 3.3
A vulnerability was found in llvm llvm-project up to 22.1.6. This affects the function llvm:...
🔗 CVE IDs covered (1)
📋 Description
A vulnerability was found in llvm llvm-project up to 22.1.6. This affects the function llvm::StringMap::insert in the library /lib/IR/ValueSymbolTable.cpp of the component ValueSymbolTable Module. The manipulation results in stack-based buffer overflow. Attacking locally is a requirement. The exploit has been made public and could be used. The project was informed of the problem early through an issue report but has not responded yet.
🔗 References (9)
- https://nvd.nist.gov/vuln/detail/CVE-2026-13573
- https://github.com/llvm/llvm-project/issues/199187
- https://github.com/llvm/llvm-project
- https://github.com/user-attachments/files/28141697/poc.zip
- https://vuldb.com/cve/CVE-2026-13573
- https://vuldb.com/submit/844457
- https://vuldb.com/vuln/374581
- https://vuldb.com/vuln/374581/cti
- https://github.com/advisories/GHSA-p6v6-grg5-r9mw