Описание
ELSA-2021-0557: perl:5.26 security update (MODERATE)
[4:5.26.3-417]
- Fix CVE-2020-12723 (bug #1909860)
- Fix Time-Local tests to pass after year 2019 (bug #1807120)
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
perl
5.26.3-417.el8_3
perl-Attribute-Handlers
0.99-417.el8_3
perl-Devel-Peek
1.26-417.el8_3
perl-Devel-SelfStubber
1.06-417.el8_3
perl-Errno
1.28-417.el8_3
perl-ExtUtils-Embed
1.34-417.el8_3
perl-ExtUtils-Miniperl
1.06-417.el8_3
perl-IO
1.38-417.el8_3
perl-IO-Zlib
1.10-417.el8_3
perl-Locale-Maketext-Simple
0.21-417.el8_3
perl-Math-Complex
1.59-417.el8_3
perl-Memoize
1.03-417.el8_3
perl-Module-Loaded
0.08-417.el8_3
perl-Net-Ping
2.55-417.el8_3
perl-Pod-Html
1.22.02-417.el8_3
perl-SelfLoader
1.23-417.el8_3
perl-Test
1.30-417.el8_3
perl-Time-Piece
1.31-417.el8_3
perl-devel
5.26.3-417.el8_3
perl-interpreter
5.26.3-417.el8_3
perl-libnetcfg
5.26.3-417.el8_3
perl-libs
5.26.3-417.el8_3
perl-macros
5.26.3-417.el8_3
perl-open
1.11-417.el8_3
perl-tests
5.26.3-417.el8_3
perl-utils
5.26.3-417.el8_3
Oracle Linux x86_64
perl
5.26.3-417.el8_3
perl-Attribute-Handlers
0.99-417.el8_3
perl-Devel-Peek
1.26-417.el8_3
perl-Devel-SelfStubber
1.06-417.el8_3
perl-Errno
1.28-417.el8_3
perl-ExtUtils-Embed
1.34-417.el8_3
perl-ExtUtils-Miniperl
1.06-417.el8_3
perl-IO
1.38-417.el8_3
perl-IO-Zlib
1.10-417.el8_3
perl-Locale-Maketext-Simple
0.21-417.el8_3
perl-Math-Complex
1.59-417.el8_3
perl-Memoize
1.03-417.el8_3
perl-Module-Loaded
0.08-417.el8_3
perl-Net-Ping
2.55-417.el8_3
perl-Pod-Html
1.22.02-417.el8_3
perl-SelfLoader
1.23-417.el8_3
perl-Test
1.30-417.el8_3
perl-Time-Piece
1.31-417.el8_3
perl-devel
5.26.3-417.el8_3
perl-interpreter
5.26.3-417.el8_3
perl-libnetcfg
5.26.3-417.el8_3
perl-libs
5.26.3-417.el8_3
perl-macros
5.26.3-417.el8_3
perl-open
1.11-417.el8_3
perl-tests
5.26.3-417.el8_3
perl-utils
5.26.3-417.el8_3
Связанные CVE
Связанные уязвимости
regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls. An application written in Perl would only be vulnerable to this flaw if it evaluates regular expressions supplied by the attacker. Evaluating regular expressions in this fashion is known to be dangerous since the regular expression engine does not protect against denial of service attacks in this usage scenario.]
regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls.
regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls.
regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted ...
Уязвимость реализации функции S_study_chunk интерпретатора языка программирования Perl, позволяющая нарушителю вызвать отказ в обслуживании