CVE-2026-40197 | lxc incus up to 6.x srcBackup.Config.VolumeSnapshots null pointer dereference (GHSA-r7w7-mmxr-47r9)

Inserito da Angelo Barbosa | Mag 7, 2026 | CVE

A vulnerability was found in lxc incus up to 6.x and classified as problematic. Affected by this issue is the function srcBackup.Config.VolumeSnapshots. Such manipulation leads to null pointer dereference.

This vulnerability is documented as CVE-2026-40197. The attack can be executed remotely. There is not any exploit available.

It is suggested to upgrade the affected component.

CVE-2026-40197 | lxc incus up to 6.x srcBackup.Config.VolumeSnapshots null pointer dereference (GHSA-r7w7-mmxr-47r9)

Post correlati

CVE-2023-47343 | FFmpeg up to 4.x Remote Code Execution

CVE-2024-24782 | HIMA X-CPU 31 Ping Request origin validation (VDE-2024-013)

CVE-2018-25252 | Serv-U FTP Voyager 16.2.0 Site Site Profile IP out-of-bounds write (Exploit 45527 / EDB-45527)

CVE-2024-12045 | Essential Blocks Plugin up to 5.0.9 on WordPress cross site scripting