CVE-2026-34610

Name of the Vulnerable Software and Affected Versions leancrypto versions prior to 1.7.1

Description The leancrypto library, a cryptographic library focused on post-quantum cryptography, has an issue in the lc x509 extract name segment() function. A cast from size t to uint8 t when handling the Common Name (CN) length allows an attacker to craft a malicious certificate. By padding the CN with 256 bytes, an attacker can manipulate the cn size variable, effectively impersonating a victim's identity in PKCS#7 verification, certificate chain matching, and code signing.

Recommendations Update to version 1.7.1 or later.