CVE-2026-41565

HIGH 7.5

CryptX versions before 0.088_001 for Perl have a stack buffer overflow in four AEAD decrypt_verify helpers

CVSS Score

7.5

EPSS Score

0.0%

EPSS Percentile

0th

CryptX versions before 0.088_001 for Perl have a stack buffer overflow in four AEAD decrypt_verify helpers. The gcm_decrypt_verify, ccm_decrypt_verify, chacha20poly1305_decrypt_verify and eax_decrypt_verify XS routines copied the caller-supplied authentication tag into a fixed 144-byte stack buffer (MAXBLOCKSIZE) without checking the supplied length. A longer tag overwrites the stack past the buffer. Version 0.088 added the clamp to gcm_decrypt_verify, and 0.088_001 added it to the other three. Any caller of an affected helper that forwards an attacker-controlled tag longer than the buffer can trigger the overflow.

CWE	CWE-121
Vendor	mik
Product	cryptx
Published	May 28, 2026
Last Updated	May 29, 2026

Stay Ahead of the Next One

Get instant alerts for mik cryptx

Be the first to know when new high vulnerabilities affecting mik cryptx are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

MIK / CryptX

0 < 0.088_001

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/DCIT/perl-CryptX/commit/57e69e541b0718ca8724c2f61514322a2d859bc1.patch github.com: https://github.com/DCIT/perl-CryptX/commit/7e56347d420aaf43b2ee1586f4a230492ccf1642.patch metacpan.org: https://metacpan.org/release/MIK/CryptX-0.088_001 openwall.com: http://www.openwall.com/lists/oss-security/2026/05/28/10