A flaw was found in libtheora. This heap-based out-of-bounds read vulnerability exists within the AVI (Audio Video Interleave) parser, specifically in the avi_parse_input_file() function. A local attacker could exploit this by tricking a user into opening a specially crafted AVI file containing a truncated header sub-chunk. This could lead to a denial-of-service (application crash) or potentially leak sensitive information from the heap.
References
| Link | Resource |
|---|---|
| https://access.redhat.com/security/cve/CVE-2026-5673 | Third Party Advisory |
| https://bugzilla.redhat.com/show_bug.cgi?id=2455340 | Issue Tracking Third Party Advisory |
| https://github.com/xiph/theora/issues/24 | Exploit Issue Tracking Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
01 May 2026, 19:53
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Redhat
Xiph Redhat enterprise Linux Xiph theora |
|
| References | () https://access.redhat.com/security/cve/CVE-2026-5673 - Third Party Advisory | |
| References | () https://bugzilla.redhat.com/show_bug.cgi?id=2455340 - Issue Tracking, Third Party Advisory | |
| References | () https://github.com/xiph/theora/issues/24 - Exploit, Issue Tracking, Third Party Advisory | |
| CPE | cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:* cpe:2.3:a:xiph:theora:-:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:* |
06 Apr 2026, 10:16
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2026-04-06 10:16
Updated : 2026-05-01 19:53
NVD link : CVE-2026-5673
Mitre link : CVE-2026-5673
CVE.ORG link : CVE-2026-5673
JSON object : View
Products Affected
redhat
- enterprise_linux
xiph
- theora
CWE
CWE-125
Out-of-bounds Read