Rapid7 Vulnerability & Exploit Database

Oracle Linux: (CVE-2020-10878) (Multiple Advisories): perl security and bug fix update

Free InsightVM Trial No Credit Card Necessary

Watch Demo See how it all works

Back to Search

Oracle Linux: (CVE-2020-10878) (Multiple Advisories): perl security and bug fix update

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:P/A:P)

Published

06/05/2020

Created

02/06/2021

Added

02/04/2021

Modified

05/26/2021

Description

Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection.

Solution(s)

oracle-linux-upgrade-perl
oracle-linux-upgrade-perl-archive-extract
oracle-linux-upgrade-perl-archive-tar
oracle-linux-upgrade-perl-attribute-handlers
oracle-linux-upgrade-perl-cgi
oracle-linux-upgrade-perl-compress-raw-bzip2
oracle-linux-upgrade-perl-compress-raw-zlib
oracle-linux-upgrade-perl-compress-zlib
oracle-linux-upgrade-perl-core
oracle-linux-upgrade-perl-cpan
oracle-linux-upgrade-perl-cpanplus
oracle-linux-upgrade-perl-devel
oracle-linux-upgrade-perl-devel-peek
oracle-linux-upgrade-perl-devel-selfstubber
oracle-linux-upgrade-perl-digest-sha
oracle-linux-upgrade-perl-errno
oracle-linux-upgrade-perl-extutils-cbuilder
oracle-linux-upgrade-perl-extutils-embed
oracle-linux-upgrade-perl-extutils-install
oracle-linux-upgrade-perl-extutils-makemaker
oracle-linux-upgrade-perl-extutils-miniperl
oracle-linux-upgrade-perl-extutils-parsexs
oracle-linux-upgrade-perl-file-fetch
oracle-linux-upgrade-perl-interpreter
oracle-linux-upgrade-perl-io
oracle-linux-upgrade-perl-io-compress-base
oracle-linux-upgrade-perl-io-compress-bzip2
oracle-linux-upgrade-perl-io-compress-zlib
oracle-linux-upgrade-perl-io-zlib
oracle-linux-upgrade-perl-ipc-cmd
oracle-linux-upgrade-perl-libnetcfg
oracle-linux-upgrade-perl-libs
oracle-linux-upgrade-perl-locale-maketext-simple
oracle-linux-upgrade-perl-log-message
oracle-linux-upgrade-perl-log-message-simple
oracle-linux-upgrade-perl-macros
oracle-linux-upgrade-perl-math-complex
oracle-linux-upgrade-perl-memoize
oracle-linux-upgrade-perl-module-build
oracle-linux-upgrade-perl-module-corelist
oracle-linux-upgrade-perl-module-load
oracle-linux-upgrade-perl-module-load-conditional
oracle-linux-upgrade-perl-module-loaded
oracle-linux-upgrade-perl-module-pluggable
oracle-linux-upgrade-perl-net-ping
oracle-linux-upgrade-perl-object-accessor
oracle-linux-upgrade-perl-open
oracle-linux-upgrade-perl-package-constants
oracle-linux-upgrade-perl-params-check
oracle-linux-upgrade-perl-parent
oracle-linux-upgrade-perl-parse-cpan-meta
oracle-linux-upgrade-perl-pod-escapes
oracle-linux-upgrade-perl-pod-html
oracle-linux-upgrade-perl-pod-simple
oracle-linux-upgrade-perl-selfloader
oracle-linux-upgrade-perl-suidperl
oracle-linux-upgrade-perl-term-ui
oracle-linux-upgrade-perl-test
oracle-linux-upgrade-perl-test-harness
oracle-linux-upgrade-perl-test-simple
oracle-linux-upgrade-perl-tests
oracle-linux-upgrade-perl-time-hires
oracle-linux-upgrade-perl-time-piece
oracle-linux-upgrade-perl-utils
oracle-linux-upgrade-perl-version

References

ELSA-2021-1678
CVE-2020-10878
USN-4602-1
USN-4602-2

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

Oracle Linux: (CVE-2020-10878) (Multiple Advisories): perl security and bug fix update

Oracle Linux: (CVE-2020-10878) (Multiple Advisories): perl security and bug fix update

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.