rpm package

suse/perl&distro=SUSE Linux Enterprise Module for Development Tools 15 SP6

pkg:rpm/suse/perl&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP6

Vulnerabilities (3)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2025-40909	Med	5.9	< 5.26.1-150300.17.20.1	5.26.1-150300.17.20.1	May 30, 2025	Perl threads have a working directory race condition where file operations may target unintended paths. If a directory handle is open at thread creation, the process-wide current working directory is temporarily changed in order to clone that handle for the new thread, which is
CVE-2018-6913		—	< 5.26.1-150300.17.17.1	5.26.1-150300.17.17.1	Apr 17, 2018	Heap-based buffer overflow in the pack function in Perl before 5.26.2 allows context-dependent attackers to execute arbitrary code via a large item count.
CVE-2018-6798		—	< 5.26.1-150300.17.17.1	5.26.1-150300.17.17.1	Apr 17, 2018	An issue was discovered in Perl 5.22 through 5.26. Matching a crafted locale dependent regular expression can cause a heap-based buffer over-read and potentially information disclosure.

CVE-2025-40909MedMay 30, 2025
affected < 5.26.1-150300.17.20.1fixed 5.26.1-150300.17.20.1
Perl threads have a working directory race condition where file operations may target unintended paths. If a directory handle is open at thread creation, the process-wide current working directory is temporarily changed in order to clone that handle for the new thread, which is
CVE-2018-6913Apr 17, 2018
affected < 5.26.1-150300.17.17.1fixed 5.26.1-150300.17.17.1
Heap-based buffer overflow in the pack function in Perl before 5.26.2 allows context-dependent attackers to execute arbitrary code via a large item count.
CVE-2018-6798Apr 17, 2018
affected < 5.26.1-150300.17.17.1fixed 5.26.1-150300.17.17.1
An issue was discovered in Perl 5.22 through 5.26. Matching a crafted locale dependent regular expression can cause a heap-based buffer over-read and potentially information disclosure.