2 matches found
CVE-2026-30909
Crypt::NaCl::Sodium for Perl up to version 2.002 is affected by potential integer overflows in bin2hex, encrypt, aes256gcm_encrypt_afternm, and seal, due to output-size checks against SIZE_MAX not being performed. This can lead to integer wraparound and an undersized output buffer, with impact de...
CVE-2026-2588
Crypt::NaCl::Sodium for Perl has an integer overflow in 32‑bit environments, affecting versions up to 2.001. The Sodium.xs code casts a STRLEN (size_t) to unsigned long long when passing a length pointer to libsodium, creating an overflow risk where 32‑bit size_t is 32‑bit but unsigned long long ...