Zulfff

**Name of the Vulnerable Software and Affected Versions** liboqs versions prior to 0.16.0 **Description** An out-of-bounds read exists in the XMSS and XMSS^MT stateful signature verification code. This occurs when the verification function is called with a signature buffer shorter than the expected size for the specified parameter set, as the implementation fails to validate the caller-supplied length and reads past the buffer end. The out-of-bounds bytes are used only for internal hash computation and are not returned to the caller, preventing data leakage. The primary impact is a potential denial of service through a process crash if the read operation accesses an unmapped memory page. **Recommendations** Update to version 0.16.0.