Products Openwall GNU/*/Linux   server OS Linux Kernel Runtime Guard John the Ripper   password cracker Free & Open Source for any platform in the cloud Pro for Linux Pro for macOS Wordlists   for password cracking passwdqc   policy enforcement Free & Open Source for Unix Pro for Windows (Active Directory) yescrypt   KDF & password hashing yespower   Proof-of-Work (PoW) crypt_blowfish   password hashing phpass   ditto in PHP tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login php_mt_seed   mt_rand() cracker Services Publications Articles Presentations Resources Mailing lists Community wiki Source code repositories (GitHub) File archive & mirrors How to verify digital signatures OVE IDs What's new

Message-Id: <C1D83D75-7C38-45B6-8054-7AE9B86BF7D8@stig.io>
Date: Thu, 28 May 2026 16:15:58 +0200
From: Stig Palmquist <stig@...g.io>
To: cve-announce@...urity.metacpan.org,
 oss-security@...ts.openwall.com
Subject: CVE-2026-41565: CryptX versions before 0.088_001 for Perl have a
 stack buffer overflow in four AEAD decrypt_verify helpers

========================================================================
CVE-2026-41565                                       CPAN Security Group
========================================================================

        CVE ID:  CVE-2026-41565
  Distribution:  CryptX
      Versions:  before 0.088_001

      MetaCPAN:  https://metacpan.org/dist/CryptX
      VCS Repo:  https://github.com/DCIT/perl-CryptX


CryptX versions before 0.088_001 for Perl have a stack buffer overflow
in four AEAD decrypt_verify helpers

Description
-----------
CryptX versions before 0.088_001 for Perl have a stack buffer overflow
in four AEAD decrypt_verify helpers.

The gcm_decrypt_verify, ccm_decrypt_verify,
chacha20poly1305_decrypt_verify and eax_decrypt_verify XS routines
copied the caller-supplied authentication tag into a fixed 144-byte
stack buffer (MAXBLOCKSIZE) without checking the supplied length. A
longer tag overwrites the stack past the buffer. Version 0.088 added
the clamp to gcm_decrypt_verify, and 0.088_001 added it to the other
three.

Any caller of an affected helper that forwards an attacker-controlled
tag longer than the buffer can trigger the overflow.

Problem types
-------------
- CWE-121 Stack-based Buffer Overflow

Solutions
---------
Upgrade to CryptX 0.088_001 or later.


References
----------
https://github.com/DCIT/perl-CryptX/commit/57e69e541b0718ca8724c2f61514322a2d859bc1.patch
https://github.com/DCIT/perl-CryptX/commit/7e56347d420aaf43b2ee1586f4a230492ccf1642.patch
https://metacpan.org/release/MIK/CryptX-0.088_001

Timeline
--------
- 2026-04-21: Issue reported.
- 2026-04-23: Version 0.088 released with fix for gcm_decrypt_verify.
- 2026-04-28: Version 0.088_001 released with fixes for the remaining
  three helpers.

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.