DEBIAN-CVE-2026-3389
- Source
- https://security-tracker.debian.org/tracker/CVE-2026-3389
- Import Source
- https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2026-3389.json
- JSON Data
- https://api.osv.dev/v1/vulns/DEBIAN-CVE-2026-3389
- Upstream
- Published
- 2026-03-01T10:16:01.363Z
- Modified
- 2026-03-02T11:14:44.010583Z
- Severity
-
- 3.3 (Low) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L CVSS Calculator
- Summary
- [none]
- Details
-
A vulnerability was determined in Squirrel up to 3.2. This vulnerability affects the function sqstdrexnewnode in the library sqstdlib/sqstdrex.cpp. Executing a manipulation can lead to null pointer dereference. The attack can only be executed locally. The exploit has been publicly disclosed and may be utilized. The project was informed of the problem early through an issue report but has not responded yet.
- References
Affected packages
Debian:11 / squirrel3
Package
- Name
- squirrel3
- Purl
- pkg:deb/debian/squirrel3?arch=source
Debian:13 / squirrel3
Package
- Name
- squirrel3
- Purl
- pkg:deb/debian/squirrel3?arch=source
Debian:14 / squirrel3
Package
- Name
- squirrel3
- Purl
- pkg:deb/debian/squirrel3?arch=source