Out-of-bounds Read in Jonasbn Crypt::openssl::pkcs12
CVE-2026-9265
Crypt::OpenSSL::PKCS12 versions before 1.96 for Perl permits a heap OOB read in print_attribute UTF8STRING path. print_attribute() copies a UTF8STRING ASN.1 attribute value into a heap buffer sized exactly to its declared length via strnc…
Vulnerability class: Buffer Overflow
Affected products
- Jonasbn Crypt::openssl::pkcs12 — versions 0
Weakness classification (CWE)
References
- 9b29abf9-4ab0-4765-b253-1875cd9b441e (issue-tracking)
- 9b29abf9-4ab0-4765-b253-1875cd9b441e (release-notes)
- 9b29abf9-4ab0-4765-b253-1875cd9b441e (patch)