CVE-2026-1188_CVE-2026-1188

6.9 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L

Description

In the Eclipse OMR port library component since release 0.2.0, an API function to return the textual names of all supported processor features was not accounting for the separator inserted between processor features. If the output buffer supplied to this function was incorrectly sized, failing to account for the separator when determining when a write to the buffer was safe could lead to a buffer overflow. This issue is fixed in Eclipse OMR version 0.8.0.

Basic Information

ID CVE-2026-1188

Source eclipse

Published Jan 29, 2026 at 08:36

Affected Product

Vendor Eclipse Foundation

Product Eclipse OMR

Version 0.2.0

Affected Versions Eclipse Foundation Eclipse OMR 0.2.0

CWE Classification

CWE-131

References

github.com /eclipse-omr/omr/pull/8082

{
    "lastseen": "",
    "description": "In the Eclipse OMR port library component since release 0.2.0, an API function to return the textual names of all supported processor features was not accounting for the separator inserted between processor features. If the output buffer supplied to this function was incorrectly sized, failing to account for the separator when determining when a write to the buffer was safe could lead to a buffer overflow. This issue is fixed in Eclipse OMR version 0.8.0.",
    "published": "2026-01-29T08:36:02.880Z",
    "modified": "2026-01-29T08:36:02.880Z",
    "type": "cve",
    "title": "CVE-2026-1188",
    "source": "eclipse",
    "references": "https://github.com/eclipse-omr/omr/pull/8082",
    "id": "CVE-2026-1188",
    "bulletinFamily": "",
    "cwe": [
        "CWE-131"
    ],
    "cvelist": null,
    "sourceData": "Eclipse Foundation Eclipse OMR 0.2.0",
    "sourceHref": "",
    "cvss": {
        "score": 6.9,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Eclipse OMR",
    "version": "0.2.0",
    "vendor": "Eclipse Foundation",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}