VYPR

rpm package

suse/perl&distro=SUSE Linux Enterprise Server LTSS Extended Security 12 SP5

pkg:rpm/suse/perl&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5

Vulnerabilities (2)

  • CVE-2017-20230CriApr 21, 2026
    affected < 5.18.2-12.32.1fixed 5.18.2-12.32.1

    Storable versions before 3.05 for Perl has a stack overflow. The retrieve_hook function stored the length of the class name into a signed integer but in read operations treated the length as unsigned. This allowed an attacker to craft data that could trigger the overflow.

  • CVE-2025-40909MedMay 30, 2025
    affected < 5.18.2-12.29.1fixed 5.18.2-12.29.1

    Perl threads have a working directory race condition where file operations may target unintended paths. If a directory handle is open at thread creation, the process-wide current working directory is temporarily changed in order to clone that handle for the new thread, which is