VYPR

Crypt::Argon2

by vendor

Source repositories

CVEs (1)

  • CVE-2026-8463MedMay 13, 2026
    risk 0.27cvss 5.3epss 0.00

    Crypt::Argon2 versions from 0.017 before 0.031 for Perl perform a heap out-of-bounds read in argon2_verify on empty encoded input. The auto-detect form of argon2_verify passes encoded_len - 1 as the length argument to memchr without checking that encoded_len is non-zero. When…