cvedb.io
CVE-2026-7111
HIGH · CVSS 8.4
EPSS exploitation probability: 0%
Published 2026-04-29T15:16:09.183 · Last modified 2026-06-25T20:17:17.543

Summary

Text::CSV_XS versions before 1.62 for Perl have a use-after-free when registered callbacks extend the Perl argument stack, which may enable type confusion or memory corruption. The Parse, print, getline, and getline_all methods invoke registered callbacks (for example after_parse, before_print, or on_error) and cache the Perl argument stack pointer across the call. If a callback extends the argument stack enough to trigger a reallocation, the return value is written through the stale pointer into the freed buffer, and the caller reads the original $self argument as the return value instead. Calling code that expects parsed data from getline_all receives the Text::CSV_XS object in its place, leading to logic errors or crashes. Text::CSV_XS objects used without any registered callbacks are

Affected products

hmbrand — text\

Does this affect you?

Add your gear to cvedb and we'll alert you only when hmbrand ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.