CVE-2011-2939

2012-01-13T18:55:00
ID CVE-2011-2939
Type cve
Reporter cve@mitre.org
Modified 2018-08-13T21:47:00

Description

Off-by-one error in the decode_xs function in Unicode/Unicode.xs in the Encode module before 2.44, as used in Perl before 5.15.6, might allow context-dependent attackers to cause a denial of service (memory corruption) via a crafted Unicode string, which triggers a heap-based buffer overflow.