Fedora 44 perl-Sereal Critical Buffer Overflow Fix Update Advisory 2026
fedora
May 29, 2026
This update includes a security fix to make sure that COPY tags cannot be used to read past end of the buffer.
Summary
Sereal is an efficient, compact-output, binary and feature-rich serialization
protocol. The Perl encoder is implemented as the Sereal::Encoder module, the
Perl decoder correspondingly as Sereal::Decoder. This Sereal module is a very
thin wrapper around both Sereal::Encoder and Sereal::Decoder. It depends on
both and loads both.
Update Information:
This update includes a security fix to make sure that COPY tags cannot be used to read past end of the buffer.
Topics Covered
Change Log
* Wed May 20 2026 Paul Howarth
References
[ 1 ] Bug #2480052 - perl-Sereal-Decoder-5.005 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2480052
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-26bb3fe2c6' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Name: perl-Sereal
Product: Fedora 44
Version: 5.005
Release: 1.fc44
Summary: Fast, compact, powerful binary (de-)serialization
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!