Rapid7 Vulnerability & Exploit Database

Red Hat: CVE-2020-10543: heap-based buffer overflow in regular expression compiler leads to DoS (Multiple Advisories)

Free InsightVM Trial No Credit Card Necessary

Watch Demo See how it all works

Back to Search

Red Hat: CVE-2020-10543: heap-based buffer overflow in regular expression compiler leads to DoS (Multiple Advisories)

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:P/A:P)

Published

06/05/2020

Created

02/05/2021

Added

02/04/2021

Modified

12/15/2023

Description

Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow.

Solution(s)

redhat-upgrade-perl
redhat-upgrade-perl-attribute-handlers
redhat-upgrade-perl-core
redhat-upgrade-perl-cpan
redhat-upgrade-perl-debuginfo
redhat-upgrade-perl-debugsource
redhat-upgrade-perl-devel
redhat-upgrade-perl-devel-peek
redhat-upgrade-perl-devel-peek-debuginfo
redhat-upgrade-perl-devel-selfstubber
redhat-upgrade-perl-errno
redhat-upgrade-perl-extutils-cbuilder
redhat-upgrade-perl-extutils-embed
redhat-upgrade-perl-extutils-install
redhat-upgrade-perl-extutils-miniperl
redhat-upgrade-perl-interpreter
redhat-upgrade-perl-interpreter-debuginfo
redhat-upgrade-perl-io
redhat-upgrade-perl-io-debuginfo
redhat-upgrade-perl-io-zlib
redhat-upgrade-perl-libnetcfg
redhat-upgrade-perl-libs
redhat-upgrade-perl-libs-debuginfo
redhat-upgrade-perl-locale-maketext-simple
redhat-upgrade-perl-macros
redhat-upgrade-perl-math-complex
redhat-upgrade-perl-memoize
redhat-upgrade-perl-module-corelist
redhat-upgrade-perl-module-loaded
redhat-upgrade-perl-net-ping
redhat-upgrade-perl-object-accessor
redhat-upgrade-perl-open
redhat-upgrade-perl-package-constants
redhat-upgrade-perl-pod-escapes
redhat-upgrade-perl-pod-html
redhat-upgrade-perl-selfloader
redhat-upgrade-perl-test
redhat-upgrade-perl-tests
redhat-upgrade-perl-time-piece
redhat-upgrade-perl-time-piece-debuginfo
redhat-upgrade-perl-utils

References

CVE-2020-10543
RHSA-2021:0343
RHSA-2021:0883
RHSA-2021:1032
RHSA-2021:1678
RHSA-2021:2792

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

Red Hat: CVE-2020-10543: heap-based buffer overflow in regular expression compiler leads to DoS (Multiple Advisories)

Red Hat: CVE-2020-10543: heap-based buffer overflow in regular expression compiler leads to DoS (Multiple Advisories)

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.