CVE-2016-2381

Опубликовано: 08 апр. 2016

Источник: debian

Описание

Perl might allow context-dependent attackers to bypass the taint protection mechanism in a child process via duplicate environment variables in envp.

Пакет	Статус	Версия исправления	Релиз	Тип
perl	fixed	5.22.1-8		package

http://perl5.git.perl.org/perl.git/commitdiff/ae37b791a73a9e78dedb89fb2429d2628cf58076

CVE-2016-2381

CVSS3: 7.5

ubuntu

почти 10 лет назад

Perl might allow context-dependent attackers to bypass the taint protection mechanism in a child process via duplicate environment variables in envp.

CVE-2016-2381

redhat

почти 10 лет назад

Perl might allow context-dependent attackers to bypass the taint protection mechanism in a child process via duplicate environment variables in envp.

CVE-2016-2381

CVSS3: 7.5

nvd

почти 10 лет назад

Perl might allow context-dependent attackers to bypass the taint protection mechanism in a child process via duplicate environment variables in envp.

GHSA-mmf9-wh8f-2qv3

CVSS3: 7.5

github

больше 3 лет назад

Perl might allow context-dependent attackers to bypass the taint protection mechanism in a child process via duplicate environment variables in envp.

openSUSE-SU-2016:2313-1

suse-cvrf

больше 9 лет назад

Security update for perl