CVE-2026-12087EXPLOITEDPATCHED

perl · socket

Socket versions before 2.041 for Perl have an out-of-bounds heap read

Description

Socket versions before 2.041 for Perl have an out-of-bounds heap read. In Socket.xs, pack_ip_mreq_source() checks the length of its source argument before the argument is read, so the check tests the byte length carried over from the preceding multiaddr argument instead. Both addresses occupy a 4-byte field, so a valid multiaddr lets a source of any length pass the check, and the source is then copied into the 4-byte imr_sourceaddr field with a fixed-size copy. A source shorter than 4 bytes is not rejected, and the copy reads up to 3 bytes past the end of its buffer. Calling pack_ip_mreq_source() with a source value shorter than 4 bytes copies adjacent heap memory into the returned packed structure.

Affected Products

Vendor	Product	Versions
perl	socket	0

References

Related News (3 articles)

Tier A

Microsoft MSRC8d ago

CVE-2026-12087 Socket versions before 2.041 for Perl have an out-of-bounds heap read

→ No new info (linked only)

Tier C

VulDB12d ago

CVE-2026-12087 | PEVANS Socket up to 2.40 on Perl Socket.xs pack_ip_mreq_source Source out-of-bounds

→ No new info (linked only)

Tier C

oss-security12d ago

CVE-2026-12087: Socket versions before 2.041 for Perl have an out-of-bounds heap read

→ No new info (linked only)

CVSS 3.17.5 NONE

CISA KEV❌ No

Actively exploited✅ Yes

Patch available

2.041

CWECWE-125, CWE-805

PublishedJun 15, 2026

Last enriched11d agov3

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

HIGHCVE-2026-11702EXP

Bytes::Random::Secure::Tiny versions through 1.011 for Perl share internal state across forked processes

Trending: 56

HIGHCVE-2026-11625EXP

Bytes::Random::Secure versions through 0.29 for Perl share internal state across forked processes

Trending: 56

HIGHCVE-2026-48962EXP

IO::Compress versions before 2.220 for Perl can execute arbitrary code in File::GlobMapper via an attacker-controlled output glob

Trending: 52

HIGHCVE-2026-12844EXP

List::SomeUtils::XS versions before 0.59 for Perl have a heap buffer overflow in the pairwise function

Trending: 46

NONECVE-2026-9698EXP

DBI versions before 1.648 for Perl saved errors in a limited-sized buffer

Trending: 6

Pin to Dashboard

Verification

State: verified

Confidence: 0%

Vulnerability Timeline

CVE Published

Jun 15, 2026

Discovered by ZDM

Jun 15, 2026

Updated: cvssEstimate, tags

Jun 15, 2026

Updated: affectedVersions, severity, activelyExploited

Jun 16, 2026

Actively Exploited

Jun 16, 2026

Patch Available

Jun 16, 2026

Version History

Last enriched 11d ago

v3Tier C11d ago

Updated affected versions to include 2.40, changed severity to HIGH, and noted that the exploit is not available but the vulnerability is actively exploited.

affectedVersionsseverityactivelyExploited

via VulDB

v2Tier C12d ago

Updated severity to HIGH, added CVSS estimate of 7.5, and marked the vulnerability as actively exploited with an available exploit.

cvssEstimatetags

via oss-security

v112d ago

Initial creation