Buffer overflow in the PerlIO implementation in Perl 5.8.0, when installed with setuid support (sperl), allows local users to execute arbitrary code by setting the PERLIO_DEBUG variable and executing a Perl script whose full pathname contains a long directory tree.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | perl | < 5.8.4-6 | perl_5.8.4-6_all.deb |
Debian | 11 | all | perl | < 5.8.4-6 | perl_5.8.4-6_all.deb |
Debian | 10 | all | perl | < 5.8.4-6 | perl_5.8.4-6_all.deb |
Debian | 999 | all | perl | < 5.8.4-6 | perl_5.8.4-6_all.deb |
Debian | 13 | all | perl | < 5.8.4-6 | perl_5.8.4-6_all.deb |