High severity7.3NVD Advisory· Published May 12, 2026· Updated May 14, 2026
CVE-2026-5089
CVE-2026-5089
Description
YAML::Syck versions before 1.38 for Perl has an out-of-bounds read.
The base60 (sexagesimal) parsing code in perl_syck.h has a buffer underflow bug in both int#base60 and float#base60 handlers. When processing the leftmost segment of a colon-separated value (e.g., the 1 in 1:30:45), the inner while loop can decrement a pointer past the start of the string buffer:
while ( colon >= ptr && *colon != ':' ) { colon--; } if ( *colon == ':' ) *colon = '\0'; // colon may be ptr-1 here
When no colon is found (final/leftmost segment), colon becomes ptr-1, and the subsequent *colon dereference reads one byte before the allocated buffer.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4(expand)+ 1 more
- (no CPE)
- (no CPE)range: <1.38
- osv-coords2 versionspkg:rpm/opensuse/perl-YAML-Syck&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/perl-YAML-Syck&distro=openSUSE%20Tumbleweed
< 1.450.0-bp160.2.1+ 1 more
- (no CPE)range: < 1.450.0-bp160.2.1
- (no CPE)range: < 1.450.0-4.1
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.