Memory Allocation Vulnerability in Samsung Open Source rlottie
CVE-2026-47319

6.1MEDIUM

Key Information:

Status
Vendor
CVE Published:
4 June 2026

What is CVE-2026-47319?

The rlottie product from Samsung contains a vulnerability that allows for excessive memory allocation due to improper handling of size values. This can lead to potential Denial of Service (DoS) conditions, impacting the performance and stability of applications utilizing this library. It is crucial for users and developers to update to the latest versions to mitigate risks associated with this issue.

Affected Version(s)

rlottie 0b4e308fa88c72cbb60cc8a2c1d2c2ad89b101dd

References

CVSS V3.1

Score:
6.1
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.