AZL-67086

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-67086.json

JSON Data

https://api.osv.dev/v1/vulns/AZL-67086

Upstream

CVE-2025-40929

Published

2025-09-08T15:15:35Z

Modified

2026-04-21T04:38:04.042080Z

Summary

CVE-2025-40929 affecting package perl-Cpanel-JSON-XS 4.27-2

Details

Cpanel::JSON::XS before version 4.40 for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or other unspecified impact

References

https://nvd.nist.gov/vuln/detail/CVE-2025-40929

Affected packages

Azure Linux:2 / perl-Cpanel-JSON-XS

Package

Name: perl-Cpanel-JSON-XS
Purl: pkg:rpm/azure-linux/perl-Cpanel-JSON-XS

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

4.27-2

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-67086.json"