Description

Text::Minify::XS versions from 0.3.0 before 0.7.8 for Perl have a heap overflow when processing some malformed UTF-8 characters. The minify functions mishandled some malformed UTF-8 characters, leading to heap corruption. Note that the minify_utf8 function is an alias for minify.

INFO

Published Date :

2026-04-27T12:29:53.967Z

Last Modified :

2026-05-01T16:03:02.431Z

Source :

CPANSec
AFFECTED PRODUCTS

The following products are affected by CVE-2026-7040 vulnerability.

Vendors Products
Rrwo
  • Text::minify::xs
  • Text\

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact