Perl before 5.30.3 has an integer overflow related to mishandling of a “PL_regkind[OP(n)] == NOTHING” situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection. (CVE-2020-10878)
Impact
An attacker may be able to exploit this vulnerability to cause a denial-of-service (DoS) attack.