VYPR

Storable

by Nwclark

CVEs (1)

  • CVE-2017-20230CriApr 21, 2026
    risk 0.58cvss 10.0epss 0.01

    Storable versions before 3.05 for Perl has a stack overflow. The retrieve_hook function stored the length of the class name into a signed integer but in read operations treated the length as unsigned. This allowed an attacker to craft data that could trigger the overflow.