Integer overflow in Haarg Storable

CVE-2026-57433

Storable versions before 3.41 for Perl have a signed integer overflow when deserializing a crafted SX_HOOK record. retrieve_hook_common reads a signed 32-bit item count from an SX_HOOK record and calls av_extend with that count plus one…

Vulnerability class: Integer Overflow

Affected products

Weakness classification (CWE)

References