vulnerability
Oracle Linux: CVE-2020-10878: ELSA-2021-1678: perl:5.26 security and bug fix update (MODERATE) (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:L/Au:N/C:P/I:P/A:C) | 2020-06-02 | 2021-02-04 | 2025-01-07 |
Severity
9
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:C)
Published
2020-06-02
Added
2021-02-04
Modified
2025-01-07
Description
Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection.
Solution(s)
oracle-linux-upgrade-perloracle-linux-upgrade-perl-archive-extractoracle-linux-upgrade-perl-archive-taroracle-linux-upgrade-perl-attribute-handlersoracle-linux-upgrade-perl-cgioracle-linux-upgrade-perl-compress-raw-bzip2oracle-linux-upgrade-perl-compress-raw-zliboracle-linux-upgrade-perl-compress-zliboracle-linux-upgrade-perl-coreoracle-linux-upgrade-perl-cpanoracle-linux-upgrade-perl-cpanplusoracle-linux-upgrade-perl-develoracle-linux-upgrade-perl-devel-peekoracle-linux-upgrade-perl-devel-selfstubberoracle-linux-upgrade-perl-digest-shaoracle-linux-upgrade-perl-errnooracle-linux-upgrade-perl-extutils-cbuilderoracle-linux-upgrade-perl-extutils-embedoracle-linux-upgrade-perl-extutils-installoracle-linux-upgrade-perl-extutils-makemakeroracle-linux-upgrade-perl-extutils-miniperloracle-linux-upgrade-perl-extutils-parsexsoracle-linux-upgrade-perl-file-fetchoracle-linux-upgrade-perl-interpreteroracle-linux-upgrade-perl-iooracle-linux-upgrade-perl-io-compress-baseoracle-linux-upgrade-perl-io-compress-bzip2oracle-linux-upgrade-perl-io-compress-zliboracle-linux-upgrade-perl-io-zliboracle-linux-upgrade-perl-ipc-cmdoracle-linux-upgrade-perl-libnetcfgoracle-linux-upgrade-perl-libsoracle-linux-upgrade-perl-locale-maketext-simpleoracle-linux-upgrade-perl-log-messageoracle-linux-upgrade-perl-log-message-simpleoracle-linux-upgrade-perl-macrosoracle-linux-upgrade-perl-math-complexoracle-linux-upgrade-perl-memoizeoracle-linux-upgrade-perl-module-buildoracle-linux-upgrade-perl-module-corelistoracle-linux-upgrade-perl-module-loadoracle-linux-upgrade-perl-module-load-conditionaloracle-linux-upgrade-perl-module-loadedoracle-linux-upgrade-perl-module-pluggableoracle-linux-upgrade-perl-net-pingoracle-linux-upgrade-perl-object-accessororacle-linux-upgrade-perl-openoracle-linux-upgrade-perl-package-constantsoracle-linux-upgrade-perl-params-checkoracle-linux-upgrade-perl-parentoracle-linux-upgrade-perl-parse-cpan-metaoracle-linux-upgrade-perl-pod-escapesoracle-linux-upgrade-perl-pod-htmloracle-linux-upgrade-perl-pod-simpleoracle-linux-upgrade-perl-selfloaderoracle-linux-upgrade-perl-suidperloracle-linux-upgrade-perl-term-uioracle-linux-upgrade-perl-testoracle-linux-upgrade-perl-test-harnessoracle-linux-upgrade-perl-testsoracle-linux-upgrade-perl-test-simpleoracle-linux-upgrade-perl-time-hiresoracle-linux-upgrade-perl-time-pieceoracle-linux-upgrade-perl-utilsoracle-linux-upgrade-perl-version
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.