CVE-2026-23490: Unbounded Oid Continuation Octets
The code parses ASN.1 OID/RELATIVE-OID continuation octets without a limit on the number of octets processed per arc. This bounded loop allows arbitrary precision integers to grow infinitely via left bitwise shifts, resulting in excessive resource consumption (memory and CPU) when parsing untrusted ASN.1 payloads, potentially leading to a Denial of Service.
greprules fetch cve-2026-23490-unbounded-oid-continuation-octets --engine opengrepDescription
The code parses ASN.1 OID/RELATIVE-OID continuation octets without a limit on the number of octets processed per arc. This bounded loop allows arbitrary precision integers to grow infinitely via left bitwise shifts, resulting in excessive resource consumption (memory and CPU) when parsing untrusted ASN.1 payloads, potentially leading to a Denial of Service.
Detection target
Not provided
Recommended fix
Not provided
False-positive notes
Not provided
Community feedback
Sign in to report false positives, mark this rule useful, or suggest metadata improvements.