rpm package
suse/perl&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2
pkg:rpm/suse/perl&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2
Vulnerabilities (4)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-31484 | — | < 5.26.1-150000.7.18.1 | 5.26.1-150000.7.18.1 | Apr 28, 2023 | CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS. | ||
| CVE-2018-6913 | — | < 5.26.1-150000.7.18.1 | 5.26.1-150000.7.18.1 | Apr 17, 2018 | Heap-based buffer overflow in the pack function in Perl before 5.26.2 allows context-dependent attackers to execute arbitrary code via a large item count. | ||
| CVE-2018-6798 | — | < 5.26.1-150000.7.18.1 | 5.26.1-150000.7.18.1 | Apr 17, 2018 | An issue was discovered in Perl 5.22 through 5.26. Matching a crafted locale dependent regular expression can cause a heap-based buffer over-read and potentially information disclosure. | ||
| CVE-2017-6512 | Med | 5.9 | < 5.26.1-150000.7.18.1 | 5.26.1-150000.7.18.1 | Jun 1, 2017 | Race condition in the rmtree and remove_tree functions in the File-Path module before 2.13 for Perl allows attackers to set the mode on arbitrary files via vectors involving directory-permission loosening logic. |
- CVE-2023-31484Apr 28, 2023affected < 5.26.1-150000.7.18.1fixed 5.26.1-150000.7.18.1
CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS.
- CVE-2018-6913Apr 17, 2018affected < 5.26.1-150000.7.18.1fixed 5.26.1-150000.7.18.1
Heap-based buffer overflow in the pack function in Perl before 5.26.2 allows context-dependent attackers to execute arbitrary code via a large item count.
- CVE-2018-6798Apr 17, 2018affected < 5.26.1-150000.7.18.1fixed 5.26.1-150000.7.18.1
An issue was discovered in Perl 5.22 through 5.26. Matching a crafted locale dependent regular expression can cause a heap-based buffer over-read and potentially information disclosure.
- affected < 5.26.1-150000.7.18.1fixed 5.26.1-150000.7.18.1
Race condition in the rmtree and remove_tree functions in the File-Path module before 2.13 for Perl allows attackers to set the mode on arbitrary files via vectors involving directory-permission loosening logic.