Out-of-bounds Read in Root-project Root

CVE-2026-24812

Vulnerability in root-project root (builtins/zlib modules). This vulnerability is associated with program files inftrees.C. This issue affects root: through 6.36.00-rc1.

Vulnerability class: Buffer Overflow

EPSS: 0.003 (20.4th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References