rpm package
suse/perl&distro=SUSE Linux Enterprise Module for Basesystem 15
pkg:rpm/suse/perl&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015
Vulnerabilities (5)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2018-18314 | — | < 5.26.1-7.6.1 | 5.26.1-7.6.1 | Dec 7, 2018 | Perl before 5.26.3 has a buffer overflow via a crafted regular expression that triggers invalid write operations. | ||
| CVE-2018-18313 | — | < 5.26.1-7.6.1 | 5.26.1-7.6.1 | Dec 7, 2018 | Perl before 5.26.3 has a buffer over-read via a crafted regular expression that triggers disclosure of sensitive information from process memory. | ||
| CVE-2018-18311 | — | < 5.26.1-7.6.1 | 5.26.1-7.6.1 | Dec 7, 2018 | Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid write operations. | ||
| CVE-2018-18312 | — | < 5.26.1-7.6.1 | 5.26.1-7.6.1 | Dec 5, 2018 | Perl before 5.26.3 and 5.28.0 before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid write operations. | ||
| CVE-2018-12015 | — | < 5.26.1-7.3.1 | 5.26.1-7.3.1 | Jun 7, 2018 | In Perl through 5.26.2, the Archive::Tar module allows remote attackers to bypass a directory-traversal protection mechanism, and overwrite arbitrary files, via an archive file containing a symlink and a regular file with the same name. |
- CVE-2018-18314Dec 7, 2018affected < 5.26.1-7.6.1fixed 5.26.1-7.6.1
Perl before 5.26.3 has a buffer overflow via a crafted regular expression that triggers invalid write operations.
- CVE-2018-18313Dec 7, 2018affected < 5.26.1-7.6.1fixed 5.26.1-7.6.1
Perl before 5.26.3 has a buffer over-read via a crafted regular expression that triggers disclosure of sensitive information from process memory.
- CVE-2018-18311Dec 7, 2018affected < 5.26.1-7.6.1fixed 5.26.1-7.6.1
Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid write operations.
- CVE-2018-18312Dec 5, 2018affected < 5.26.1-7.6.1fixed 5.26.1-7.6.1
Perl before 5.26.3 and 5.28.0 before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid write operations.
- CVE-2018-12015Jun 7, 2018affected < 5.26.1-7.3.1fixed 5.26.1-7.3.1
In Perl through 5.26.2, the Archive::Tar module allows remote attackers to bypass a directory-traversal protection mechanism, and overwrite arbitrary files, via an archive file containing a symlink and a regular file with the same name.