EulerOS Virtualization 2.13.0 : perl (EulerOS-SA-2025-2181)

🗓️ 16 Sep 2025 00:00:00Reported by TenableType

Perl heap overflow may allow denial of service or code execution on Virtualization.

Reporter	Title	Published	Views	Family All 115
FreeBSD	Perl -- heap buffer overflow when transliterating non-ASCII bytes	13 Apr 202500:00	–	freebsd
IBM Security Bulletins	Security Bulletin: AIX is vulnerable to denial of service and possible code execution due to Perl (CVE-2024-8176, CVE-2024-56406)	26 Jun 202515:03	–	ibm
AlpineLinux	CVE-2024-56406	13 Apr 202513:16	–	alpinelinux
AstraLinux	Astra Linux – Vulnerability in Perl	16 Jun 202511:28	–	astralinux
Information Security Automation	April Linux Patch Wednesday	30 Apr 202523:34	–	avleonov
Tenable Nessus	Azure Linux 3.0 Security Update: perl (CVE-2024-56406)	20 Apr 202500:00	–	nessus
Tenable Nessus	Debian dsa-5902 : libperl-dev - security update	13 Apr 202500:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP11 : perl (EulerOS-SA-2025-1673)	12 Jun 202500:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP11 : perl (EulerOS-SA-2025-1674)	12 Jun 202500:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP13 : perl (EulerOS-SA-2025-1695)	30 Jun 202500:00	–	nessus

Source	Link
nessus	www.nessus.org/u
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(265108);
  script_version("1.1");
  script_set_attribute(attribute:"plugin_modification_date", value:"2025/09/16");

  script_cve_id("CVE-2024-56406");

  script_name(english:"EulerOS Virtualization 2.13.0 : perl (EulerOS-SA-2025-2181)");

  script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS Virtualization host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"According to the versions of the perl packages installed, the EulerOS Virtualization installation on the remote host is
affected by the following vulnerabilities :

    A heap buffer overflow vulnerability was discovered in Perl. Release branches 5.34, 5.36, 5.38 and 5.40
    are affected, including development versions from 5.33.1 through 5.41.10. When there are non-ASCII bytes
    in the left-hand-side of the `tr` operator, `S_do_trans_invmap` can overflow the destination pointer `d`.
    $ perl -e '$_ = '\x{FF}' x 1000000; tr/\xFF/\x{100}/;'    Segmentation fault (core dumped) It is believed
    that this vulnerability can enable Denial of Service and possibly Code Execution attacks on platforms that
    lack sufficient defenses.(CVE-2024-56406)

Tenable has extracted the preceding description block directly from the EulerOS Virtualization perl security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
  # https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2025-2181
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?051b8704");
  script_set_attribute(attribute:"solution", value:
"Update the affected perl packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-56406");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2025/04/08");
  script_set_attribute(attribute:"patch_publication_date", value:"2025/09/16");
  script_set_attribute(attribute:"plugin_publication_date", value:"2025/09/16");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:perl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:perl-libs");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:uvp:2.13.0");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Huawei Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2025 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/uvp_version");

  exit(0);
}

include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

var _release = get_kb_item("Host/EulerOS/release");
if (isnull(_release) || _release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
var uvp = get_kb_item("Host/EulerOS/uvp_version");
if (uvp != "2.13.0") audit(AUDIT_OS_NOT, "EulerOS Virtualization 2.13.0");
if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu && "x86" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "x86" >!< cpu) audit(AUDIT_ARCH_NOT, "i686 / x86_64", cpu);

var flag = 0;

var pkgs = [
  "perl-5.34.0-13.h4.eulerosv2r13",
  "perl-libs-5.34.0-13.h4.eulerosv2r13"
];

foreach (var pkg in pkgs)
  if (rpm_check(release:"EulerOS-2.0", reference:pkg)) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  var tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "perl");
}

16 Sep 2025 00:00Current

7.9High risk

Vulners AI Score7.9

CVSS 3.18.4

EPSS0.00473

SSVC