CVE-2026-8376

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Perl versions through 5.43.10 have a heap buffer overflow when compiling regular expressions with a repeated fixed string on 32-bit builds.

Perl study chunk in regcomp study.c checked the size of the joined substring buffer in characters rather than bytes. For a quantified fixed substring with a large minimum count, the byte length mincount * l could overflow SSize t, producing an undersized SvGROW allocation; the subsequent copy writes past the end of the buffer.

A caller that compiles an attacker-controlled regular expression on a 32-bit perl build triggers a heap buffer overflow at compile time.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-680

Related Identifiers

CVE-2026-8376

Affected Products

Perl

CVE-2026-8376

Weakness Enumeration

Related Identifiers

Affected Products

References · 1