CNNVD-202509-1086 Information

CNNVD ID

CNNVD-202509-1086

Related CVE

CVE-2025-40928

• CNNVD Published: 2025-09-08

Description (Chinese)

MetaCPAN JSON::XS是MetaCPAN基金会的一个Perl语言中的JSON编解码模块。 MetaCPAN JSON::XS 4.04之前版本存在安全漏洞，该漏洞源于整数缓冲区溢出，可能导致拒绝服务攻击。

Description (English)

MetaCPAN JSON: XS is the decoded module of JSON in a Perl language of the MetaCPAN Foundation. MetaCPAN JSON: There was a security loophole in the previous version of XS 4.04, which originated in the spill of the whole buffer zone and could lead to a denial of service attack.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

MetaCPAN

Published

2025-09-08

Last Modified

2026-02-24

References

https://metacpan.org/release/MLEHMANN/JSON-XS-4.03/source/XS.xs#L256 https://security.metacpan.org/patches/J/JSON-XS/4.03/CVE-2025-40928-r1.patch https://access.redhat.com/security/cve/cve-2025-40928