NULL pointer dereference in Jonasbn Crypt::openssl::x509

CVE-2026-58101

Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow denial of service via NULL pointer dereference. X509V3_EXT_d2i(ext) returns NULL when an extension's DER value fails to parse. basicC, ia5string, and auth_att dereference its resul…

Affected products

Weakness classification (CWE)

References