Red Hat Security Advisory 2024-4430-03 - An update for perl-HTTP-Tiny is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.
135e64515b9f522aeeeed8c0a5e57a0388c48d6ba6fc17341c01fc847ddfc12eRed Hat Security Advisory 2024-3128-03 - An update for the perl:5.32 module is now available for Red Hat Enterprise Linux 8.
c2094c5fc393806a655d29bc2d8dbfc8fd5df47ae87729842302005c927bcd0aRed Hat Security Advisory 2024-3094-03 - An update for perl-CPAN is now available for Red Hat Enterprise Linux 8.
13615df09164150ed5faa023c8594def1086ce8ab4a191b4c565e1c3b13313dfRed Hat Security Advisory 2024-3049-03 - An update for perl-Convert-ASN1 is now available for Red Hat Enterprise Linux 8.
8b4f4a3430e3477682beae37421bb92f3a5bf91504c5c78cbced14cbb58c19aaRed Hat Security Advisory 2024-2228-03 - An update for perl is now available for Red Hat Enterprise Linux 9.
f7209848142eb73cfbed9a6b93fc2ccb4acef52c4166e78f6eb6041ab14aff8fRed Hat Security Advisory 2024-0579-03 - An update for perl-HTTP-Tiny is now available for Red Hat Enterprise Linux 8.8 Extended Update Support.
305dc2f086ab6e0e53625586d951b53484607a613c38d21f967e4be258a875b9Red Hat Security Advisory 2024-0422-03 - An update for perl-HTTP-Tiny is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.
e4957a0a123d4ead65bccbb63ecc1372120a026d69b2cd8599a332bb5bf561d2Debian Linux Security Advisory 5592-1 - It was discovered that missing input sanitising in libspreadsheet-parseexcel-perl, a Perl module to access information from Excel Spreadsheets, may result in the execution of arbitrary commands if a specially crafted document file is processed.
7d23a9860de7e59f8baaffb3498f2f33d7b8adfb4ff3419757d1cd86d14be29eUbuntu Security Notice 6517-1 - It was discovered that Perl incorrectly handled printing certain warning messages. An attacker could possibly use this issue to cause Perl to consume resources, leading to a denial of service. This issue only affected Ubuntu 22.04 LTS. Nathan Mills discovered that Perl incorrectly handled certain regular expressions. An attacker could use this issue to cause Perl to crash, resulting in a denial of service, or possibly execute arbitrary code.
b953160fa68551de0614ddff05b5f92f80ad78745472a71f3f2dfb71e97c2f1aRed Hat Security Advisory 2023-7174-01 - An update for perl-HTTP-Tiny is now available for Red Hat Enterprise Linux 8.
a9d228aec6f82ddbb9aaf4c8f5bd5ea3b01b24c9420d262f8622d2f6fd297e7eRed Hat Security Advisory 2023-6542-01 - An update for perl-HTTP-Tiny is now available for Red Hat Enterprise Linux 9.
69562b18cbea6f574f9168eb72d9dfb596e9e0e6b79ae6307890828b6e2423d7Red Hat Security Advisory 2023-6539-01 - An update for perl-CPAN is now available for Red Hat Enterprise Linux 9.
3c551da096802673e0c0571e38a559884e4f4980d4c4ad418c8ab0795d92017cUbuntu Security Notice 6112-2 - USN-6112-1 fixed vulnerabilities in Perl. This update provides the corresponding updates for Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, Ubuntu 22.10, and Ubuntu 23.04. It was discovered that Perl was not properly verifying TLS certificates when using CPAN together with HTTP::Tiny to download modules over HTTPS. If a remote attacker were able to intercept communications, this flaw could potentially be used to install altered modules.
88d292c5cea590c61b6c43300276011b2ed5acec94fe889627c267568b5a9cf4Ubuntu Security Notice 6112-1 - It was discovered that Perl was not properly verifying TLS certificates when using CPAN together with HTTP::Tiny to download modules over HTTPS. If a remote attacker were able to intercept communications, this flaw could potentially be used to install altered modules.
2cf6be1799272567464ae27a04638f2c3ef401074d8a57989082ac295dc2119bRed Hat Security Advisory 2023-2969-01 - The net-snmp packages provide various libraries and tools for the Simple Network Management Protocol, including an SNMP library, an extensible agent, tools for requesting or setting information from SNMP agents, tools for generating and handling SNMP traps, a version of the netstat command which uses SNMP, and a Tk/Perl Management Information Base browser. Issues addressed include memory leak and null pointer vulnerabilities.
346deac59da79643700ed12bedb47e1383d4a31ba08328abd954d72fa08195c3Red Hat Security Advisory 2023-2444-01 - The net-snmp packages provide various libraries and tools for the Simple Network Management Protocol, including an SNMP library, an extensible agent, tools for requesting or setting information from SNMP agents, tools for generating and handling SNMP traps, a version of the netstat command which uses SNMP, and a Tk/Perl Management Information Base browser. Issues addressed include memory leak and null pointer vulnerabilities.
a6456725d96e9e7f7c0565d5e5f77aff28e12f9e7de2bb06291dd17529e1b756Debian Linux Security Advisory 5339-1 - Ikeda Soji reported that libhtml-stripscripts-perl, a Perl module for removing scripts from HTML, is prone to a regular expression denial of service, due to catastrophic backtracking for HTML content with specially crafted style attributes.
bf8cb8b66ff079009ce37d09bcafe99b7218495bbb1c7dae58b492f0c5bb6b15Ubuntu Security Notice 5689-2 - USN-5689-1 fixed a vulnerability in Perl. This update provides the corresponding update for Ubuntu 22.10. It was discovered that Perl incorrectly handled certain signature verification. An remote attacker could possibly use this issue to bypass signature verification.
9c5f64f6ea6b671dac5426645ac570bc296b6ea28163623f578cc062704d0782Ubuntu Security Notice 5689-1 - It was discovered that Perl incorrectly handled certain signature verification. An remote attacker could possibly use this issue to bypass signature verification.
54c698882ac8eb6c62825aaee40ad5ea9f2313cfb44d044e5997a2486d0988efRed Hat Security Advisory 2022-5809-01 - The pcre2 package contains a new generation of the Perl Compatible Regular Expression libraries for implementing regular expression pattern matching using the same syntax and semantics as Perl. Issues addressed include an out of bounds read vulnerability.
64b425ad6e0c78a1c1ba9124284ad8737404322d84451098989ae4c1b8e87b2cSchneider Electric SpaceLogic C-Bus Home Controller (5200WHC2) versions 1.31.460 and below suffer from an authenticated OS command injection vulnerability. This can be exploited to inject and execute arbitrary shell commands as the root user via the name GET parameter in delsnap.pl Perl/CGI script which is used for deleting snapshots taken from the webcam.
d419b1daf53d0f565d05d6ba8ea75d7ee176ccb9140c55fa6180d7f9532dc155Red Hat Security Advisory 2022-5251-01 - The pcre2 package contains a new generation of the Perl Compatible Regular Expression libraries for implementing regular expression pattern matching using the same syntax and semantics as Perl. Issues addressed include an out of bounds read vulnerability.
7f82598fb861b54efea0b9faf6de8baf9b04240de2e408afbe72628bf8b9ec0eDebian Linux Security Advisory 5137-1 - Jakub Wilk discovered a local privilege escalation in needrestart, a utility to check which daemons need to be restarted after library upgrades. Regular expressions to detect the Perl, Python, and Ruby interpreters are not anchored, allowing a local user to escalate privileges when needrestart tries to detect if interpreters are using old source files.
4052b1ab98ef2e147520dccc60d5f2db6e5257cadadb6200c821a45e46034e08Ubuntu Security Notice 5030-2 - USN-5030-1 addressed vulnerabilities in Perl DBI module. This update provides the corresponding updates for Ubuntu 16.04 ESM. It was discovered that the Perl DBI module incorrectly opened files outside of the folder specified in the data source name. A remote attacker could possibly use this issue to obtain sensitive information.
4156488823a7bad9ce607b22c08fb929d15f81dacd19585771c178426fe8c2b3Red Hat Security Advisory 2021-4373-04 - PCRE is a Perl-compatible regular expression library. Issues addressed include buffer over-read and integer overflow vulnerabilities.
ca72ff34862c269bf762247e88771ab452e6cdd816234e639ece99fd0c3520b2
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed