CVE-2026-3407 - YosysHQ yosys BLIF File rtlil.h set heap-based overflow

CVE ID : CVE-2026-3407 Published : March 2, 2026, 3:16 a.m. | 1 hour, 53 minutes ago Description : A vulnerability was determined in YosysHQ yosys up to 0.62. This affects the function Yosys::RTLIL::Const::set of the file kernel/rtlil.h of the component BLIF File Parser. This manipulation causes heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been publicly disclosed and may be utilized. Applying a patch is the recommended action to fix this issue. It appears that the issue is not reproducible all the time. Severity: 4.8 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...