Security Advisory

CVE-2017-20230

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-21 15:26:18

Last updated 2026-04-21 18:22:25

Assigner CPANSec

State PUBLISHED

Description

Storable versions before 3.05 for Perl has a stack overflow. The retrieve_hook function stored the length of the class name into a signed integer but in read operations treated the length as unsigned. This allowed an attacker to craft data that could trigger the overflow.

← Browse all CVEs View on cve.org ↗