JLSEC-2026-680

Source
https://github.com/JuliaLang/SecurityAdvisories.jl/blob/main/advisories/published/2026/JLSEC-2026-680.md
Import Source
https://github.com/JuliaLang/SecurityAdvisories.jl/tree/generated/osv/2026/JLSEC-2026-680.json
JSON Data
https://api.osv.dev/v1/vulns/JLSEC-2026-680
Upstream
  • EUVD-2024-16683
  • GHSA-qrv4-68mg-fv43
Published
2026-07-14T21:41:35.775Z
Modified
2026-07-18T00:02:19.785191950Z
Severity
  • 9.1 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H CVSS Calculator
Summary
Remotely executed SEGV and out of bounds read allows malicious packet sender to crash or cause an...
Details

Remotely executed SEGV and out of bounds read allows malicious packet sender to crash or cause an out of bounds read via sending a malformed packet with the correct length.

Database specific
{
    "sources": [
        {
            "url": "https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2024-0901",
            "published": "2024-03-25T23:15:51.250Z",
            "html_url": "https://nvd.nist.gov/vuln/detail/CVE-2024-0901",
            "modified": "2026-06-17T06:54:31.803Z",
            "imported": "2026-07-17T22:24:07.293Z",
            "id": "CVE-2024-0901",
            "database_specific": {
                "status": "Analyzed"
            }
        },
        {
            "url": "https://api.github.com/advisories/GHSA-qrv4-68mg-fv43",
            "html_url": "https://github.com/advisories/GHSA-qrv4-68mg-fv43",
            "published": "2024-03-26T00:32:02Z",
            "imported": "2026-07-17T22:24:07.462Z",
            "id": "GHSA-qrv4-68mg-fv43",
            "modified": "2025-12-16T00:31:31Z"
        },
        {
            "url": "https://euvdservices.enisa.europa.eu/api/enisaid?id=EUVD-2024-16683",
            "html_url": "https://euvd.enisa.europa.eu/vulnerability/EUVD-2024-16683",
            "modified": "2024-08-01T18:39:44Z",
            "imported": "2026-07-17T22:24:10.860Z",
            "published": "2024-03-25T22:37:56Z",
            "id": "EUVD-2024-16683"
        }
    ],
    "license": "CC-BY-4.0"
}
References

Affected packages

Julia / wolfSSL_jll

Package

Name
wolfSSL_jll
Purl
pkg:julia/wolfSSL_jll?uuid=98c43586-9870-5ae5-ab22-acc77b9bbdb5

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.7.2+0

Database specific

source
"https://github.com/JuliaLang/SecurityAdvisories.jl/tree/generated/osv/2026/JLSEC-2026-680.json"