Yves Sereal::decoder
2 CVEs affecting Yves Sereal::decoder. Latest disclosed: 2026-05-31. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-8796 | High | 8.1 | 2026-05-31 | Sereal::Decoder versions before 5.005 for Perl allow heap out-of-bounds read via crafted input. In Perl/Decoder/srl_decoder.c, srl_read_object() and srl_read_… |
CVE-2024-14030 | | 2026-03-31 | Sereal::Decoder versions from 4.000 through 4.009_002 for Perl embeds a vulnerable version of the Zstandard library. Sereal::Decoder embeds a version of the Z… |