HIGH
mouse07410
CVE published 2026-05-29
CVE-2026-45615
A memory safety vulnerability exists in the OER (Octet Encoding Rules) decoding skeleton files generated by mouse07410/asn1c versions 1.4 and earlier. The flaw resides in INTEGER_oer.c, where the decoder fails to validate required bytes before extracting the Most Significant Bit (MSB) when parsing a zero-length OER payload for variable-length, non-negative INTEGER types. This results in a precise 1-byte h [truncated]