Stack-based buffer overflow in the CPerlHost::Add method in win32/perlhost.h in Perl before 5.24.3-RC1 and 5.26.x before 5.26.1-RC1 on Windows allows attackers to execute arbitrary code via a long environment variable.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | perl | < 5.36.0-7+deb12u1 | perl_5.36.0-7+deb12u1_all.deb |
Debian | 11 | all | perl | < 5.32.1-4+deb11u3 | perl_5.32.1-4+deb11u3_all.deb |
Debian | 10 | all | perl | < 5.28.1-6+deb10u1 | perl_5.28.1-6+deb10u1_all.deb |
Debian | 999 | all | perl | < 5.38.2-4 | perl_5.38.2-4_all.deb |
Debian | 13 | all | perl | < 5.38.2-4 | perl_5.38.2-4_all.deb |