Security Advisory

CVE-2026-27014

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-19 20:45:07

Last updated 2026-02-20 20:04:09

Assigner GitHub_M

State PUBLISHED

Description

NanaZip is an open source file archive Starting in version 5.0.1252.0 and prior to version 6.0.1630.0, circular `NextOffset` chains cause an infinite loop, and deeply nested directories cause unbounded recursion (stack overflow) in the ROMFS archive parser. Version 6.0.1630.0 patches the issue.

← Browse all CVEs View on cve.org ↗