Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-12883

Опубликовано: 19 сент. 2017
Источник: ubuntu
Приоритет: medium
CVSS2: 6.4
CVSS3: 9.1

Описание

Buffer overflow in the S_grok_bslash_N function in regcomp.c in Perl 5 before 5.24.3-RC1 and 5.26.x before 5.26.1-RC1 allows remote attackers to disclose sensitive information or cause a denial of service (application crash) via a crafted regular expression with an invalid '\N{U+...}' escape.

РелизСтатусПримечание
artful

not-affected

5.26.0-8ubuntu1
devel

not-affected

5.26.0-8ubuntu1
esm-infra-legacy/trusty

released

5.18.2-2ubuntu1.3
esm-infra/xenial

released

5.22.1-9ubuntu0.2
precise/esm

not-affected

5.14.2-6ubuntu2.6
trusty

released

5.18.2-2ubuntu1.3
trusty/esm

released

5.18.2-2ubuntu1.3
upstream

released

5.26.0-8
vivid/ubuntu-core

ignored

end of life
xenial

released

5.22.1-9ubuntu0.2

Показывать по

Ссылки на источники

6.4 Medium

CVSS2

9.1 Critical

CVSS3

Связанные уязвимости

redhat логотип

CVE-2017-12883

CVSS3: 6.5
redhat
больше 8 лет назад

Buffer overflow in the S_grok_bslash_N function in regcomp.c in Perl 5 before 5.24.3-RC1 and 5.26.x before 5.26.1-RC1 allows remote attackers to disclose sensitive information or cause a denial of service (application crash) via a crafted regular expression with an invalid '\N{U+...}' escape.

nvd логотип

CVE-2017-12883

CVSS3: 9.1
nvd
больше 8 лет назад

Buffer overflow in the S_grok_bslash_N function in regcomp.c in Perl 5 before 5.24.3-RC1 and 5.26.x before 5.26.1-RC1 allows remote attackers to disclose sensitive information or cause a denial of service (application crash) via a crafted regular expression with an invalid '\N{U+...}' escape.

debian логотип

CVE-2017-12883

CVSS3: 9.1
debian
больше 8 лет назад

Buffer overflow in the S_grok_bslash_N function in regcomp.c in Perl 5 ...

github логотип

GHSA-h435-qr7v-xh34

CVSS3: 9.1
github
больше 3 лет назад

Buffer overflow in the S_grok_bslash_N function in regcomp.c in Perl 5 before 5.24.3-RC1 and 5.26.x before 5.26.1-RC1 allows remote attackers to disclose sensitive information or cause a denial of service (application crash) via a crafted regular expression with an invalid '\N{U+...}' escape.

suse-cvrf логотип

openSUSE-SU-2017:3101-1

suse-cvrf
около 8 лет назад

Security update for perl

6.4 Medium

CVSS2

9.1 Critical

CVSS3