{"id":"CVE-2026-9265","summary":"Crypt::OpenSSL::PKCS12 versions before 1.96 for Perl permits a heap OOB read in print_attribute UTF8STRING path","details":"Crypt::OpenSSL::PKCS12 versions before 1.96 for Perl permits a heap OOB read in print_attribute UTF8STRING path.\n\nprint_attribute() copies a UTF8STRING ASN.1 attribute value into a heap buffer sized exactly to its declared length via strncpy, leaving no NUL terminator. Downstream callers run strlen() on the result and pass the inflated length to newSVpvn(), copying attacker-influenced adjacent heap bytes into a Perl scalar.","modified":"2026-07-08T08:11:38.763784976Z","published":"2026-06-20T00:46:07.737Z","database_specific":{"cwe_ids":["CWE-125"],"cna_assigner":"CPANSec","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/9xxx/CVE-2026-9265.json"},"references":[{"type":"WEB","url":"https://cpan.org/modules"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/9xxx/CVE-2026-9265.json"},{"type":"ADVISORY","url":"https://metacpan.org/release/JONASBN/Crypt-OpenSSL-PKCS12-1.96/source/Changes.md"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-9265"},{"type":"REPORT","url":"https://github.com/dsully/perl-crypt-openssl-pkcs12/issues/55"},{"type":"FIX","url":"https://github.com/dsully/perl-crypt-openssl-pkcs12/commit/a7bd2f319fa8aab8177b3d767ea06dd85ceb3173.patch"},{"type":"PACKAGE","url":"https://github.com/dsully/perl-crypt-openssl-pkcs12"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/dsully/perl-crypt-openssl-pkcs12","events":[{"introduced":"0"},{"fixed":"eef8b1bc996baa6ac5da854d8052372c52bc52ff"},{"fixed":"a7bd2f319fa8aab8177b3d767ea06dd85ceb3173"}],"database_specific":{"extracted_events":[{"introduced":"0"},{"fixed":"1.96"}],"source":["DESCRIPTION","REFERENCES"]}}],"versions":["1.95","1.94","1.93","1.92","1.91","1.11","1.10","1.9","1.8","1.7","1.6","1.5","1.4","1.3","1.2","1.1","1.0","0.10","0.9"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-9265.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"}]}