Unrated severityOSV Advisory· Published Jan 27, 2026· Updated Feb 19, 2026
An improper pointer arithmetic in root-project/root at builtins/zlib/inffast.c
CVE-2026-24811
Description
Vulnerability in root-project root (builtins/zlib modules). This vulnerability is associated with program files inffast.C.
This issue affects root.
Affected products
1- Range: v5-99-03, v5-99-03-02, v5-99-04, …
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- github.com/root-project/root/pull/18526mitrepatch
News mentions
0No linked articles in our index yet.