Insecure zlib Library in Compress::Raw::Zlib Affects Perl Applications
CVE-2026-3381
9.8CRITICAL
What is CVE-2026-3381?
Compress::Raw::Zlib versions prior to 2.220 include potentially insecure versions of the zlib library, which could expose Perl applications to security vulnerabilities. The subsequent version 2.220 integrates zlib 1.3.2, which addresses issues uncovered in security audits, including critical fixes from the ongoing 7ASecurity assessment. Users are encouraged to upgrade promptly to ensure their applications are protected against associated risks.
Affected Version(s)
Compress::Raw::Zlib 0 <= 2.219