2468988 – (CVE-2026-8261) CVE-2026-8261 squirrel: Squirrel: Heap-based buffer overflow allows local denial of service

Bug 2468988 (CVE-2026-8261) - CVE-2026-8261 squirrel: Squirrel: Heap-based buffer overflow allows local denial of service

Summary: CVE-2026-8261 squirrel: Squirrel: Heap-based buffer overflow allows local den...

Keywords:
Status:	NEW
Alias:	CVE-2026-8261
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2026-05-11 03:01 UTC by OSIDB Bzimport
Modified:	2026-05-18 14:44 UTC (History)
CC List:	53 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2026-05-11 03:01:21 UTC

A vulnerability was determined in Squirrel up to 3.2. This affects the function SQFunctionProto::Load of the file squirrel/sqobject.cpp. This manipulation causes heap-based buffer overflow. The attack is restricted to local execution. The exploit has been publicly disclosed and may be utilized. The project was informed of the problem early through an issue report but has not responded yet.

Note You need to log in before you can comment on or make changes to this bug.

alcohan
amctagga
anjoseph
anpicker
aoconnor
bniver
bparees
caswilli
dbosanac
eborisov
eglynn
fdeutsch
flucifre
gmeno
gparvin
groman
hasun
jbalunas
jfula
jjoyce
jkoehler
jowilson
jprabhak
jpretori
jreimann
jschluet
kaycoth
lball
lhh
lphiri
mbenjamin
mburns
mdessi
mgarciac
mhackett
mrizzi
ngough
nyancey
ometelka
oramraz
pahickey
pcattana
ptisnovs
rhaigner
smullick
sostapov
stirabos
syedriko
thason
vereddy
veshanka
wtam
xdharmai