2 matches found
DEBIAN-CVE-2026-12087
Socket versions before 2.041 for Perl have an out-of-bounds heap read. In Socket.xs, packipmreqsource checks the length of its source argument before the argument is read, so the check tests the byte length carried over from the preceding multiaddr argument instead. Both addresses occupy a 4-byte...
CVE-2026-12087
Summary: CVE-2026-12087 affects Perl’s Socket module prior to 2.041. The vulnerability is an out-of-bounds heap read in pack_ip_mreq_source(), where a length check is performed before reading, but a short source (<4 bytes) is copied into a fixed 4-byte field, causing the copy to read up to 3 b...