Integer overflow in Timlegge Crypt::nacl::sodium

CVE-2026-2588

Crypt::NaCl::Sodium versions through 2.001 for Perl has an integer overflow flaw on 32-bit systems. Sodium.xs casts a STRLEN (size_t) to unsigned long long when passing a length pointer to libsodium functions. On 32-bit systems size_t is…

Vulnerability class: Integer Overflow

EPSS: 0.001 (17.9th percentile) — read the EPSS interpretation.