Количество 24
Количество 24
openSUSE-SU-2020:0850-1
Security update for perl
SUSE-SU-2020:1682-2
Security update for perl
SUSE-SU-2020:1682-1
Security update for perl
SUSE-SU-2020:1662-1
Security update for perl
ELSA-2021-9238
ELSA-2021-9238: perl security update (IMPORTANT)
ELSA-2021-0343
ELSA-2021-0343: perl security update (MODERATE)
RLSA-2021:1678
Moderate: perl security and bug fix update
ELSA-2021-1678
ELSA-2021-1678: perl:5.26 security and bug fix update (MODERATE)
CVE-2020-12723
regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls. An application written in Perl would only be vulnerable to this flaw if it evaluates regular expressions supplied by the attacker. Evaluating regular expressions in this fashion is known to be dangerous since the regular expression engine does not protect against denial of service attacks in this usage scenario.]
CVE-2020-12723
regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls.
CVE-2020-12723
regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls.
CVE-2020-12723
regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted ...
ELSA-2021-0557
ELSA-2021-0557: perl:5.26 security update (MODERATE)
BDU:2020-04041
Уязвимость реализации функции S_study_chunk интерпретатора языка программирования Perl, позволяющая нарушителю вызвать отказ в обслуживании
CVE-2020-10878
Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection. An application written in Perl would only be vulnerable to this flaw if it evaluates regular expressions supplied by the attacker. Evaluating regular expressions in this fashion is known to be dangerous since the regular expression engine does not protect against denial of service attacks in this usage scenario.]
CVE-2020-10878
Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection.
CVE-2020-10878
Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection.
CVE-2020-10878
Perl before 5.30.3 has an integer overflow related to mishandling of a ...
CVE-2020-10543
Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow. An application written in Perl would only be vulnerable to this flaw if it evaluates regular expressions supplied by the attacker. Evaluating regular expressions in this fashion is known to be dangerous since the regular expression engine does not protect against denial of service attacks in this usage scenario. Additionally, the target system needs a sufficient amount of memory to allocate partial expansions of the nested quantifiers prior to the overflow occurring. This requirement is unlikely to be met on 64bit systems.]
CVE-2020-10543
Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | openSUSE-SU-2020:0850-1 Security update for perl | больше 5 лет назад | ||
| SUSE-SU-2020:1682-2 Security update for perl | больше 5 лет назад | ||
| SUSE-SU-2020:1682-1 Security update for perl | больше 5 лет назад | ||
| SUSE-SU-2020:1662-1 Security update for perl | больше 5 лет назад | ||
| ELSA-2021-9238 ELSA-2021-9238: perl security update (IMPORTANT) | больше 4 лет назад | ||
| ELSA-2021-0343 ELSA-2021-0343: perl security update (MODERATE) | почти 5 лет назад | ||
 | RLSA-2021:1678 Moderate: perl security and bug fix update | больше 4 лет назад | ||
| ELSA-2021-1678 ELSA-2021-1678: perl:5.26 security and bug fix update (MODERATE) | больше 4 лет назад | ||
 | CVE-2020-12723 regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls. An application written in Perl would only be vulnerable to this flaw if it evaluates regular expressions supplied by the attacker. Evaluating regular expressions in this fashion is known to be dangerous since the regular expression engine does not protect against denial of service attacks in this usage scenario.] | CVSS3: 7.5 | 0% Низкий | больше 5 лет назад |
 | CVE-2020-12723 regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls. | CVSS3: 7.5 | 0% Низкий | больше 5 лет назад |
 | CVE-2020-12723 regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls. | CVSS3: 7.5 | 0% Низкий | больше 5 лет назад |
| CVE-2020-12723 regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted ... | CVSS3: 7.5 | 0% Низкий | больше 5 лет назад |
| ELSA-2021-0557 ELSA-2021-0557: perl:5.26 security update (MODERATE) | почти 5 лет назад | ||
 | BDU:2020-04041 Уязвимость реализации функции S_study_chunk интерпретатора языка программирования Perl, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 7.5 | 0% Низкий | больше 5 лет назад |
| CVE-2020-10878 Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection. An application written in Perl would only be vulnerable to this flaw if it evaluates regular expressions supplied by the attacker. Evaluating regular expressions in this fashion is known to be dangerous since the regular expression engine does not protect against denial of service attacks in this usage scenario.] | CVSS3: 8.6 | 0% Низкий | больше 5 лет назад |
| CVE-2020-10878 Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection. | CVSS3: 8.6 | 0% Низкий | больше 5 лет назад |
| CVE-2020-10878 Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection. | CVSS3: 8.6 | 0% Низкий | больше 5 лет назад |
| CVE-2020-10878 Perl before 5.30.3 has an integer overflow related to mishandling of a ... | CVSS3: 8.6 | 0% Низкий | больше 5 лет назад |
| CVE-2020-10543 Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow. An application written in Perl would only be vulnerable to this flaw if it evaluates regular expressions supplied by the attacker. Evaluating regular expressions in this fashion is known to be dangerous since the regular expression engine does not protect against denial of service attacks in this usage scenario. Additionally, the target system needs a sufficient amount of memory to allocate partial expansions of the nested quantifiers prior to the overflow occurring. This requirement is unlikely to be met on 64bit systems.] | CVSS3: 8.2 | 4% Низкий | больше 5 лет назад |
| CVE-2020-10543 Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow. | CVSS3: 8.2 | 4% Низкий | больше 5 лет назад |
Уязвимостей на страницу