CVE-2026-39855

Name of the Vulnerable Software and Affected Versions osslsigncode versions prior to 2.13

Description osslsigncode is a tool for Authenticode signing and timestamping. An integer underflow exists in versions 2.12 and earlier within the PE page-hash computation code (pe page hash calc()). This occurs when processing PE files where the SizeOfHeaders (hdrsize) is larger than the SectionAlignment (pagesize). The subtraction of hdrsize from pagesize without validation leads to an integer underflow, resulting in a large unsigned length. This causes an out-of-bounds read from the heap during hashing, potentially crashing the process. The issue is triggered when signing malicious PE files with page hashing enabled (-ph) or verifying malicious signed PE files containing page hashes.

Recommendations Update osslsigncode to version 2.13 or later.