Description
A vulnerability was determined in llvm llvm-project up to 22.1.6. This impacts the function GCRelocateInst::getBasePtr in the library llvm/lib/IR/IntrinsicInst.cpp of the component Bitcode File Handler. This manipulation causes heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been publicly disclosed and may be utilized. The project was informed of the problem early through an issue report but has not responded yet.
Published: 2026-06-29
Score: 4.8 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A vulnerability was discovered in the LLVM project, affecting the function GCRelocateInst::getBasePtr in the Bitcode File Handler. The flaw causes a heap-based buffer overflow, which can lead to local code execution if an attacker supplies crafted bitcode. The weakness is an example of CWE‑119 (Improper Restriction of Operations within the Bounds of a Memory Buffer) and CWE‑122 (Heap‑based Buffer Overflow).

Affected Systems

The affected product is LLVM’s llvm-project library, specifically the Bitcode File Handler module. Versions up to 22.1.6 are known to be vulnerable. The issue arises when processing .bc files as part of the LLVM compiler infrastructure.

Risk and Exploitability

The CVSS score of 4.8 indicates moderate risk. EPSS is not available, so real‑world exploitation likelihood is unclear. The vulnerability is not listed in CISA’s KEV catalog. The attack vector is local: an attacker would need to provide malicious bitcode to a process that uses LLVM. Although the exploit has been publicly disclosed, no publicly available patch was released at the time of this analysis.

Generated by OpenCVE AI on June 29, 2026 at 16:21 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update LLVM to a version that includes the fix, if an updated release is available.
  • Restrict the processing of untrusted bitcode files in any environment that incorporates LLVM.
  • Employ runtime memory safety checks, such as Address Sanitizer, to detect and block overflow attempts.
  • Monitor system logs for abnormal crashes or memory corruption that may indicate exploitation attempts.

Generated by OpenCVE AI on June 29, 2026 at 16:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 01 Jul 2026 14:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Mon, 29 Jun 2026 15:00:00 +0000

Type Values Removed Values Added
Description A vulnerability was determined in llvm llvm-project up to 22.1.6. This impacts the function GCRelocateInst::getBasePtr in the library llvm/lib/IR/IntrinsicInst.cpp of the component Bitcode File Handler. This manipulation causes heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been publicly disclosed and may be utilized. The project was informed of the problem early through an issue report but has not responded yet.
Title llvm llvm-project Bitcode File IntrinsicInst.cpp getBasePtr heap-based overflow
First Time appeared Llvm
Llvm llvm-project
Weaknesses CWE-119
CWE-122
CPEs cpe:2.3:a:llvm:llvm-project:*:*:*:*:*:*:*:*
Vendors & Products Llvm
Llvm llvm-project
References
Metrics cvssV2_0

{'score': 1.7, 'vector': 'AV:L/AC:L/Au:S/C:N/I:N/A:P/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 3.3, 'vector': 'CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 3.3, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 4.8, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P'}


Subscriptions

Llvm Llvm-project
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-07-01T14:03:43.581Z

Reserved: 2026-06-28T18:47:39.506Z

Link: CVE-2026-13574

cve-icon Vulnrichment

Updated: 2026-07-01T14:03:33.078Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-29T21:00:04Z

Weaknesses
  • CWE-119

    Improper Restriction of Operations within the Bounds of a Memory Buffer

  • CWE-122

    Heap-based Buffer Overflow