Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
4.8
The Silver Searcher (2.2.0) Crashes on Malicious Input
CVE-2026-2642
Summary
A bug in The Silver Searcher, a code search tool, can cause it to crash if it's given certain types of input. This could potentially allow an attacker to make the tool malfunction, but it requires them to have access to the tool's environment. Users should update to a fixed version to prevent crashes.
Original title
A security vulnerability has been detected in ggreer the_silver_searcher up to 2.2.0. The impacted element is the function search_stream of the file src/search.c. The manipulation leads to null poi...
Original description
A security vulnerability has been detected in ggreer the_silver_searcher up to 2.2.0. The impacted element is the function search_stream of the file src/search.c. The manipulation leads to null pointer dereference. Local access is required to approach this attack. The exploit has been disclosed publicly and may be used. The project was informed of the problem early through an issue report but has not responded yet.
nvd CVSS2.0
1.7
nvd CVSS3.1
3.3
nvd CVSS4.0
4.8
Vulnerability type
CWE-404
CWE-476
NULL Pointer Dereference
Published: 18 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026