Описание
CGI.pm module before 3.63 for Perl does not properly escape newlines in (1) Set-Cookie or (2) P3P headers, which might allow remote attackers to inject arbitrary headers into responses from applications that use CGI.pm.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 3.64-1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [3.64-1]] |
| esm-infra/xenial | not-affected | 3.64-1 |
| hardy | DNE | |
| lucid | ignored | end of life |
| oneiric | ignored | end of life |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needed |
| quantal | ignored | end of life |
| raring | ignored | end of life |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 5.14.2-16 |
| esm-infra-legacy/trusty | not-affected | 5.14.2-16 |
| esm-infra/xenial | not-affected | 5.14.2-16 |
| hardy | released | 5.8.8-12ubuntu0.7 |
| lucid | released | 5.10.1-8ubuntu2.2 |
| oneiric | released | 5.12.4-4ubuntu0.1 |
| precise | released | 5.14.2-6ubuntu2.2 |
| precise/esm | not-affected | 5.14.2-6ubuntu2.2 |
| quantal | released | 5.14.2-13ubuntu0.1 |
| raring | not-affected | 5.14.2-16 |
Показывать по
EPSS
5 Medium
CVSS2
Связанные уязвимости
CGI.pm module before 3.63 for Perl does not properly escape newlines in (1) Set-Cookie or (2) P3P headers, which might allow remote attackers to inject arbitrary headers into responses from applications that use CGI.pm.
CGI.pm module before 3.63 for Perl does not properly escape newlines in (1) Set-Cookie or (2) P3P headers, which might allow remote attackers to inject arbitrary headers into responses from applications that use CGI.pm.
CGI.pm module before 3.63 for Perl does not properly escape newlines i ...
CGI.pm module before 3.63 for Perl does not properly escape newlines in (1) Set-Cookie or (2) P3P headers, which might allow remote attackers to inject arbitrary headers into responses from applications that use CGI.pm.
Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику нарушить целостность защищаемой информации
EPSS
5 Medium
CVSS2