Heap-based buffer overflow in the pack function in Perl before 5.26.2 allows context-dependent attackers to execute arbitrary code via a large item count.
CPE | Name | Operator | Version |
---|---|---|---|
ubuntu_linux | eq | 16.04 | |
ubuntu_linux | eq | 14.04 | |
ubuntu_linux | eq | 12.04 | |
ubuntu_linux | eq | 17.10 | |
debian_linux | eq | 8.0 | |
debian_linux | eq | 7.0 | |
debian_linux | eq | 9.0 | |
perl | lt | 5.26.2 |
www.securityfocus.com/bid/103953
www.securitytracker.com/id/1040681
lists.debian.org/debian-lts-announce/2018/04/msg00009.html
rt.perl.org/Public/Bug/Display.html?id=131844
security.gentoo.org/glsa/201909-01
usn.ubuntu.com/3625-1/
usn.ubuntu.com/3625-2/
www.debian.org/security/2018/dsa-4172
www.oracle.com/security-alerts/cpujul2020.html