Security Advisory

CVE-2026-32284

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-26 19:40:51

Last updated 2026-03-30 14:55:25

Assigner Go

State PUBLISHED

Description

The msgpack decoder fails to properly validate the input buffer length when processing truncated fixext data (format codes 0xd4-0xd8). This can lead to an out-of-bounds read and a runtime panic, allowing a denial of service attack.

← Browse all CVEs View on cve.org ↗