CVE-2026-57433
ANALYSIS PENDINGStorable versions before 3.41 for Perl have a signed integer overflow when deserializing a crafted SX_HOOK record
Title source: cnaDescription
Storable versions before 3.41 for Perl have a signed integer overflow when deserializing a crafted SX_HOOK record. retrieve_hook_common reads a signed 32-bit item count from an SX_HOOK record and calls av_extend with that count plus one. A count of I32_MAX wraps the addition to a negative value. A crafted blob passed to thaw or retrieve triggers the overflow; av_extend receives the negative count and dies with a panic, terminating the deserialization.
References (2)
Core 2
Core References
Details
CWE
CWE-190
Status
published
Products (1)
HAARG/Storable
< 3.41
Published
Jul 13, 2026
Tracked Since
Jul 13, 2026