Описание
regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls.
Отчет
A vulnerability in the Perl regular expression compiler affects Red Hat Enterprise Linux 7 and 8. The flaw exists in the S_study_chunk() function's handling of GOSUB opcodes during regular expression compilation. When processing untrusted regular expressions, recursive calls to S_study_chunk() can corrupt the intermediate language state, allowing an attacker to inject malicious instructions into the compiled regular expression. This network-accessible vulnerability can lead to denial of service. To mitigate, applications should not allow compilation of untrusted regular expressions. Note that this issue affects regular expression compilation, not pattern matching against untrusted input.
Меры по смягчению последствий
To mitigate this flaw, developers should not allow untrusted regular expressions to be compiled by the Perl regular expression compiler.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | perl | Out of support scope | ||
| Red Hat Enterprise Linux 6 | perl | Out of support scope | ||
| Red Hat Enterprise Linux 8 | perl:5.24/perl | Will not fix | ||
| Red Hat Enterprise Linux 7 | perl | Fixed | RHSA-2021:0343 | 02.02.2021 |
| Red Hat Enterprise Linux 7.4 Advanced Update Support | perl | Fixed | RHSA-2021:1266 | 20.04.2021 |
| Red Hat Enterprise Linux 7.4 Telco Extended Update Support | perl | Fixed | RHSA-2021:1266 | 20.04.2021 |
| Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions | perl | Fixed | RHSA-2021:1266 | 20.04.2021 |
| Red Hat Enterprise Linux 7.6 Extended Update Support | perl | Fixed | RHSA-2021:0883 | 16.03.2021 |
| Red Hat Enterprise Linux 7.7 Extended Update Support | perl | Fixed | RHSA-2021:1032 | 30.03.2021 |
| Red Hat Enterprise Linux 8 | perl | Fixed | RHSA-2021:0557 | 16.02.2021 |
Показывать по
Дополнительная информация
Статус:
EPSS
7.5 High
CVSS3
Связанные уязвимости
regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls. An application written in Perl would only be vulnerable to this flaw if it evaluates regular expressions supplied by the attacker. Evaluating regular expressions in this fashion is known to be dangerous since the regular expression engine does not protect against denial of service attacks in this usage scenario.]
regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls.
regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted ...
Уязвимость реализации функции S_study_chunk интерпретатора языка программирования Perl, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
7.5 High
CVSS3