1. Sleuth Kit 4.14.0 ISO9660 Parser Flaw Allows Out-of-Bounds Reads, Infinite Loop via Malicious Image
A critical vulnerability has been identified in the Sleuth Kit, a widely deployed open-source library used for digital forensics and disk image analysis. Tracked as CVE-2026-40026, the flaw exists in the ISO9660 filesystem parser's parse_susp() function through version 4.14.0. The vulnerability stems from the function'...