ALT-PU-2017-2810-1
Closed vulnerabilities
Published: 2018-04-17
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2018-6797
An issue was discovered in Perl 5.18 through 5.26. A crafted regular expression can cause a heap-based buffer overflow, with control over the bytes written.
Severity: CRITICAL (9.8)
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References:
- 1040681
- 1040681
- 1042004
- 1042004
- RHSA-2018:1192
- RHSA-2018:1192
- https://rt.perl.org/Public/Bug/Display.html?id=132227
- https://rt.perl.org/Public/Bug/Display.html?id=132227
- GLSA-201909-01
- GLSA-201909-01
- USN-3625-1
- USN-3625-1
- DSA-4172
- DSA-4172
- https://www.oracle.com/security-alerts/cpujul2020.html
- https://www.oracle.com/security-alerts/cpujul2020.html
Published: 2018-04-17
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2018-6798
An issue was discovered in Perl 5.22 through 5.26. Matching a crafted locale dependent regular expression can cause a heap-based buffer over-read and potentially information disclosure.
Severity: HIGH (7.5)
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
References:
- 1040681
- 1040681
- RHSA-2018:1192
- RHSA-2018:1192
- https://rt.perl.org/Public/Bug/Display.html?id=132063
- https://rt.perl.org/Public/Bug/Display.html?id=132063
- GLSA-201909-01
- GLSA-201909-01
- USN-3625-1
- USN-3625-1
- DSA-4172
- DSA-4172
- https://www.oracle.com/security-alerts/cpujul2020.html
- https://www.oracle.com/security-alerts/cpujul2020.html