Out-of-bounds write in FreeBSD - CVE-2026-58081
Published: July 1, 2026
FreeBSD
Detailed vulnerability description
The vulnerability allows a remote attacker to cause a buffer overflow.
The vulnerability exists due to improper input validation in multiple iconv(3) encoding modules when converting untrusted input to or from affected encodings. A remote attacker can supply crafted input to trigger a buffer overflow.
The issue affects encoding modules including HZ, UTF-7, VIQR, and ZW.