{"id":"CVE-2025-40930","details":"JSON::SIMD before version 1.07 and earlier for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or other unspecified impact.","modified":"2026-03-15T22:50:46.357933Z","published":"2025-09-08T15:15:36.093Z","references":[{"type":"WEB","url":"https://metacpan.org/release/PJUHASZ/JSON-SIMD-1.06/source/SIMD.xs#L248"},{"type":"WEB","url":"https://metacpan.org/release/PJUHASZ/JSON-SIMD-1.07/changes"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2025/09/08/3"},{"type":"FIX","url":"https://github.com/pjuhasz/JSON-SIMD/commit/9a87de7331c9fa5198cae404a83b17649cf7b918.patch"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/pjuhasz/json-simd","events":[{"introduced":"0"},{"fixed":"9a87de7331c9fa5198cae404a83b17649cf7b918"}]}],"versions":["1.04","1.05","1.06","1.06_but_really","LAST_JSON_XS_VERSION"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-40930.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"1.07"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}