rpm package

suse/perl&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP5

pkg:rpm/suse/perl&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5

Vulnerabilities (4)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2023-31484	—	< 5.18.2-12.26.1	5.18.2-12.26.1	Apr 28, 2023	CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS.
CVE-2020-12723	—	< 5.18.2-12.23.1	5.18.2-12.23.1	Jun 5, 2020	regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls.
CVE-2020-10878	—	< 5.18.2-12.23.1	5.18.2-12.23.1	Jun 5, 2020	Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection.
CVE-2020-10543	—	< 5.18.2-12.23.1	5.18.2-12.23.1	Jun 5, 2020	Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow.

CVE-2023-31484Apr 28, 2023
affected < 5.18.2-12.26.1fixed 5.18.2-12.26.1
CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS.
CVE-2020-12723Jun 5, 2020
affected < 5.18.2-12.23.1fixed 5.18.2-12.23.1
regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls.
CVE-2020-10878Jun 5, 2020
affected < 5.18.2-12.23.1fixed 5.18.2-12.23.1
Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection.
CVE-2020-10543Jun 5, 2020
affected < 5.18.2-12.23.1fixed 5.18.2-12.23.1
Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow.