CVE-2026-24857

Vulnerability Description

`bulk_extractor` is a digital forensics exploitation tool. Starting in version 1.4, `bulk_extractor`’s embedded unrar code has a heap‑buffer‑overflow in the RAR PPM LZ decoding path. A crafted RAR inside a disk image causes an out‑of‑bounds write in `Unpack::CopyString`, leading to a crash under ASAN (and likely a crash or memory corruption in production builds). There's potential for using this for RCE. As of time of publication, no known patches are available.

Vulnerability Details

Published Date

January 28, 2026

Last Modified

January 29, 2026

CWE ID

CWE-122

Source

NVD

Vendor

simsong

Product

bulk_extractor

External References

https://github.com/simsong/bulk_extractor/security/advisories/GHSA-rh8m-9xrx-q64q

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment