CVE-2026-58102

Source
https://cve.org/CVERecord?id=CVE-2026-58102
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-58102.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-58102
Downstream
Published
2026-07-13T22:22:48.618Z
Modified
2026-07-16T03:46:22.285600753Z
Severity
  • 9.1 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H CVSS Calculator
Summary
Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow a heap out-of-bounds read via a long certificate extension OID in hv_exts
Details

Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow a heap out-of-bounds read via a long certificate extension OID in hv_exts.

When building the extension hash (via extensions(), extensionsbylongname(), extensionsbyoid(), or hasextensionoid()), the code passes OBJobj2txt()'s return value as the hash-key length; because that value is the OID's full text length rather than the bytes written to the fixed-size buffer (129 bytes), an OID whose text is longer than the 129-byte buffer causes a read past the allocation, exposing adjacent heap memory as the returned hash key. extensionsbyname() uses the static shortname path and is not affected.

Database specific
{
    "cwe_ids": [
        "CWE-125"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/58xxx/CVE-2026-58102.json",
    "cna_assigner": "CPANSec"
}
References

Affected packages

Git / github.com/dsully/perl-crypt-openssl-x509

Affected ranges

Type
GIT
Repo
https://github.com/dsully/perl-crypt-openssl-x509
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Fixed
Database specific
{
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "fixed": "2.1.3"
        }
    ],
    "source": [
        "DESCRIPTION",
        "REFERENCES"
    ]
}

Affected versions

1.*
1.8.10
1.8.11
1.8.12
1.8.13
1.8.9
1.9
1.9.1
1.9.10
1.9.11
1.9.12
1.9.13
1.9.13-TRIAL
1.9.14
1.9.14-TRIAL
1.9.15
1.9.2
1.9.3
1.9.4
1.9.5
1.9.6
1.9.7
1.9.8
1.9.9
2.*
2.0.0
2.0.1
2.1.0-TRIAL
2.1.1
2.1.1-TRIAL
2.1.2

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-58102.json"