Integer overflow in Iamb Crypt::sodium::xs

CVE-2026-30910

Crypt::Sodium::XS versions through 0.001000 for Perl has potential integer overflows. Combined aead encryption, combined signature creation, and bin2hex functions do not check that output size will be less than SIZE_MAX, which could lead…

Vulnerability class: Integer Overflow

EPSS: 0.000 (2.1th percentile) — read the EPSS interpretation.

Affected products

Iamb Crypt::sodium::xs — versions 0

Weakness classification (CWE)

CWE-190 — Integer Overflow or Wraparound

References

metacpan.org/release/IAMB/Crypt-Sodium-XS-0.001001/changes (release-notes)