Home

Description

In OCaml through 4.14.3, Bigarray.reshape allows an integer overflow, and resultant reading of arbitrary memory, when untrusted data is processed.

PUBLISHED Reserved 2026-03-27 | Published 2026-03-27 | Updated 2026-03-27 | Assigner mitre




MEDIUM: 5.9CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N

Problem types

CWE-190 Integer Overflow or Wraparound

Product status

Default status
unknown

Any version
affected

References

github.com/ocaml/ocaml/issues/14655

github.com/ocaml/ocaml/pull/14674

cve.org (CVE-2026-34353)

nvd.nist.gov (CVE-2026-34353)

Download JSON