rpm package

suse/perl&distro=SUSE Enterprise Storage 5

pkg:rpm/suse/perl&distro=SUSE%20Enterprise%20Storage%205

Vulnerabilities (4)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2020-12723	—	< 5.18.2-12.23.1	5.18.2-12.23.1	Jun 5, 2020	regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls.
CVE-2020-10878	—	< 5.18.2-12.23.1	5.18.2-12.23.1	Jun 5, 2020	Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection.
CVE-2020-10543	—	< 5.18.2-12.23.1	5.18.2-12.23.1	Jun 5, 2020	Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow.
CVE-2018-18311	—	< 5.18.2-12.20.1	5.18.2-12.20.1	Dec 7, 2018	Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid write operations.

CVE-2020-12723Jun 5, 2020
affected < 5.18.2-12.23.1fixed 5.18.2-12.23.1
regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls.
CVE-2020-10878Jun 5, 2020
affected < 5.18.2-12.23.1fixed 5.18.2-12.23.1
Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection.
CVE-2020-10543Jun 5, 2020
affected < 5.18.2-12.23.1fixed 5.18.2-12.23.1
Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow.
CVE-2018-18311Dec 7, 2018
affected < 5.18.2-12.20.1fixed 5.18.2-12.20.1
Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid write operations.