Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2011-1487HistoryApr 11, 2011 - 6:55 p.m.
CVE-2011-1487
2011-04-1118:55:00
Debian Security Bug Tracker
security-tracker.debian.org
14
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.017 Low
EPSS
Percentile
87.6%
The (1) lc, (2) lcfirst, (3) uc, and (4) ucfirst functions in Perl 5.10.x, 5.11.x, and 5.12.x through 5.12.3, and 5.13.x through 5.13.11, do not apply the taint attribute to the return value upon processing tainted input, which might allow context-dependent attackers to bypass the taint protection mechanism via a crafted string.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | perl | < 5.10.1-20 | perl_5.10.1-20_all.deb |
| Debian | 11 | all | perl | < 5.10.1-20 | perl_5.10.1-20_all.deb |
| Debian | 10 | all | perl | < 5.10.1-20 | perl_5.10.1-20_all.deb |
| Debian | 999 | all | perl | < 5.10.1-20 | perl_5.10.1-20_all.deb |
| Debian | 13 | all | perl | < 5.10.1-20 | perl_5.10.1-20_all.deb |
Related
ubuntucve
ubuntucve
CVE-2011-1487
2011-04-11 00:00:00
openvas
openvas
Mandriva Update for perl MDVSA-2011:091 (perl)
2011-05-23 00:00:00
Fedora Update for perl FEDORA-2011-4610
2011-04-19 00:00:00
Debian: Security Advisory (DSA-2265-1)
2011-08-03 00:00:00
nessus
nessus
Fedora 14 : perl-5.12.3-143.fc14 (2011-4610)
2011-04-14 00:00:00
Fedora 15 : perl-5.12.3-156.fc15 (2011-4631)
2011-04-18 00:00:00
Fedora 13 : perl-5.10.1-123.fc13 (2011-4918)
2011-04-25 00:00:00
prion
prion
Design/Logic Flaw
2011-04-11 18:55:00
debian
debian
[SECURITY] [DSA 2265-1] perl security update
2011-06-20 18:15:14
cve
cve
CVE-2011-1487
2011-04-11 18:55:00
fedora
fedora
[SECURITY] Fedora 15 Update: perl-5.12.3-156.fc15
2011-04-15 21:09:58
[SECURITY] Fedora 13 Update: perl-5.10.1-123.fc13
2011-04-23 20:49:40
veracode
veracode
Privilege Escalation
2020-04-10 00:59:29
redhat
redhat
(RHSA-2011:0558) Moderate: perl security and bug fix update
2011-05-19 00:00:00
f5
f5
oraclelinux
oraclelinux
perl security and bug fix update
2011-05-28 00:00:00
gentoo
gentoo
Perl: Multiple vulnerabilities
2013-11-28 00:00:00
securityvulns
securityvulns
[USN-1129-1] Perl vulnerabilities
2011-05-05 00:00:00
perl multiple security vulnerabilities
2011-05-20 00:00:00
ubuntu
ubuntu
Perl vulnerabilities
2011-05-03 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.017 Low
EPSS
Percentile
87.6%
Related for DEBIANCVE:CVE-2011-1487