CNNVD-202601-4439 Information

CNNVD ID

CNNVD-202601-4439

Related CVE

CVE-2026-24800

• CNNVD Published: 2026-01-27

Description (Chinese)

Furnace是tildearrow个人开发者的一个芯片调谐跟踪器。 furnace存在安全漏洞，该漏洞源于zlib组件inflate.C存在越界写入和缓冲区溢出，可能导致执行任意代码。

Description (English)

Furnace is a chip tune tracker for the Tildearrow personal developer. There is a security loophole in the Furnace, which stems from the presence of the zlib component inflate.C across the border and the spill of the buffer zone, which may lead to the implementation of arbitrary codes.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2026-01-27

Last Modified

2026-02-24

References

https://github.com/tildearrow/furnace/pull/2471 https://access.redhat.com/security/cve/cve-2026-24800