CVE-2026-8796— Sereal::Decoder versions before 5.005 for Perl allow heap out-of-bounds read via crafted input
Possible ATT&CK Techniques 2AI
T1203 · Exploitation for Client Execution T1190 · Exploit Public-Facing ApplicationGet alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-8796
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Sereal::Decoder versions before 5.005 for Perl allow heap out-of-bounds read via crafted input
Source: NVD (National Vulnerability Database)
Vulnerability Description
Sereal::Decoder versions before 5.005 for Perl allow heap out-of-bounds read via crafted input. In Perl/Decoder/srl_decoder.c, srl_read_object() and srl_read_hash() process a COPY tag, a back-reference whose target byte the decoder re-decodes as a fresh tag. When that target byte matches the SHORT_BINARY pattern (an inline string whose length is encoded in the low bits of the tag), the resulting read is not bounded to precede the COPY tag's own offset and can run past the end of the input buffer. An attacker controlled COPY offset can land inside a previously decoded value rather than on a tag boundary, planting a byte that the decoder reads as a SHORT_BINARY tag and consuming up to 31 following bytes from the heap as a class name (OBJECT path) or hash key (HASH path).
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
跨界内存读
Source: NVD (National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| YVES | Sereal::Decoder | 0 ~ 5.005 | - |
II. Public POCs for CVE-2026-8796
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-8796
请登录查看更多情报信息。
Patches & Fixes for CVE-2026-8796 (1)
Other References for CVE-2026-8796 (1)
- 🔗 Changes - metacpan.orgrelease-notes
IV. Related Vulnerabilities
Same weakness: CWE-125
- CVE-2026-10233
Assimp Half-Life 1 MDL Loader HL1MDLLoader.cpp read_sequence - CVE-2026-5071
can: Local Denial of Service via SocketCAN Send - CVE-2026-45613
Rizin: Heap-buffer-overflow in OMF parser - CVE-2026-46344
liboqs: Heap-buffer-overflow in XMSS verification path via O - CVE-2025-41278
Waterfall WF-500 RX 7.10.0越界读漏洞
V. Comments for CVE-2026-8796
No comments yet