Lucene search
K

18 matches found

F5 Networks
F5 Networks
added 2025/02/05 8:2 a.m.20 views

K000149640: Multiple Perl vulnerabilities

Security Advisory Description CVE-2023-31486 HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS configuration where users must opt in to verify certificates. CVE-2020-12723 regcomp.c in Perl before 5.30.3 allows a buffer overflow...

8.2CVSS6.8AI score0.11334EPSS
Exploits4
OSV
OSV
added 2023/08/31 12:14 p.m.2 views

BELL-CVE-2017-12837 CVE-2017-12837 does not affect BellSoft software

Bulletin has no description...

7.5CVSS5.8AI score0.06207EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/02/07 12:0 a.m.24 views

Photon OS 1.0: Perl PHSA-2017-0037

An update of the perl package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2017-0037. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid121735;...

9.1CVSS7.4AI score0.06207EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/08/17 12:0 a.m.34 views

Photon OS 1.0: Perl / Ruby PHSA-2017-0037 (deprecated)

An update of perl,ruby packages for PhotonOS has been released. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2/7/2019 The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2017-0037. The text itself is copyright C VMware, Inc...

9.1CVSS7.6AI score0.09718EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2018/01/15 12:0 a.m.26 views

Fedora 27 : 4:perl (2017-7ae07e9f1f)

Update perl:MODULECOMPAT ---- Security fix for CVE-2017-12837 CVE-2017-12883 see Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...

9.1CVSS6.8AI score0.06207EPSS
Exploits0References4
Mageia
Mageia
added 2018/01/03 3:50 p.m.48 views

Updated perl packages fix security vulnerability

John Lightsey and Todd Rinaldo reported that the opportunistic loading of optional modules can make many programs unintentionally load code from the current working directory which might be changed to another directory without the user realising and potentially leading to privilege escalation...

9.1CVSS0.8AI score0.06207EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2017/11/27 12:0 a.m.30 views

openSUSE Security Update : perl (openSUSE-2017-1304)

This update for perl fixes the following issues : Security issues fixed : - CVE-2017-12837: Heap-based buffer overflow in the Sregatom function in regcomp.c in Perl 5 before 5.24.3-RC1 and 5.26.x before 5.26.1-RC1 allows remote attackers to cause a denial of service out-of-bounds write via a...

9.1CVSS7AI score0.06207EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2017/11/14 12:0 a.m.28 views

Ubuntu 14.04 LTS / 16.04 LTS : Perl vulnerabilities (USN-3478-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3478-1 advisory. Jakub Wilk discovered that Perl incorrectly handled certain regular expressions. An attacker could use this issue to cause Perl to crash,...

9.1CVSS7.4AI score0.06207EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2017/11/13 12:59 p.m.63 views

USN-3478-1: Perl vulnerabilities

Jakub Wilk discovered that Perl incorrectly handled certain regular expressions. An attacker could use this issue to cause Perl to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2017-12837, CVE-2017-12883...

9.1CVSS7.4AI score0.06207EPSS
Exploits0
OpenVAS
OpenVAS
added 2017/10/15 12:0 a.m.27 views

Fedora Update for perl FEDORA-2017-2008fdd7e2

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.5AI score0.06207EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/09/25 12:0 a.m.37 views

FreeBSD : perl -- multiple vulnerabilities (d9e82328-a129-11e7-987e-4f174049b30a)

SO-AND-SO reports : CVE-2017-12814: $ENV$key stack-based buffer overflow on Windows A possible stack-based buffer overflow in the %ENV code on Windows has been fixed by removing the buffer completely since it was superfluous anyway. CVE-2017-12837: Heap buffer overflow in regular expression...

9.8CVSS7.4AI score0.06981EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2017/09/22 12:0 a.m.53 views

Debian DSA-3982-1 : perl - security update

Multiple vulnerabilities were discovered in the implementation of the Perl programming language. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2017-12837 Jakub Wilk reported a heap buffer overflow flaw in the regular expression compiler, allowing a...

9.1CVSS7.1AI score0.06207EPSS
Exploits0References9
Debian
Debian
added 2017/09/21 11:43 a.m.34 views

[SECURITY] [DSA 3982-1] perl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3982-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 21, 2017 https://www.debian.org/security/faq -...

6.4CVSS2.9AI score0.06207EPSS
Exploits0
Debian CVE
Debian CVE
added 2017/09/19 6:0 p.m.37 views

CVE-2017-12837

Heap-based buffer overflow in the Sregatom function in regcomp.c in Perl 5 before 5.24.3-RC1 and 5.26.x before 5.26.1-RC1 allows remote attackers to cause a denial of service out-of-bounds write via a regular expression with a '\N' escape and the case-insensitive modifier...

7.5CVSS8.4AI score0.06207EPSS
Exploits0
Cvelist
Cvelist
added 2017/09/19 6:0 p.m.34 views

CVE-2017-12837

Heap-based buffer overflow in the Sregatom function in regcomp.c in Perl 5 before 5.24.3-RC1 and 5.26.x before 5.26.1-RC1 allows remote attackers to cause a denial of service out-of-bounds write via a regular expression with a '\N' escape and the case-insensitive modifier...

7.2AI score0.06207EPSS
Exploits0References9
CVE
CVE
added 2017/09/19 6:0 p.m.216 views

CVE-2017-12837

CVE-2017-12837 is a heap-based buffer overflow in Perl’s regex compiler (S_regatom in regcomp.c) affecting Perl 5 before 5.24.3-RC1 and 5.26.x before 5.26.1-RC1. It allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted regular expression containing a '\N{}' esca...

7.5CVSS7AI score0.06207EPSS
Exploits0References9Affected Software1
UbuntuCve
UbuntuCve
added 2017/09/19 12:0 a.m.30 views

CVE-2017-12837

Heap-based buffer overflow in the Sregatom function in regcomp.c in Perl 5 before 5.24.3-RC1 and 5.26.x before 5.26.1-RC1 allows remote attackers to cause a denial of service out-of-bounds write via a regular expression with a '\N' escape and the case-insensitive modifier...

7.5CVSS7AI score0.06207EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2017/09/15 12:48 p.m.27 views

CVE-2017-12837

A heap write buffer overflow was found in perl's Sregatom function, which is used in the compilation of regular expressions, resulting in the crash of the perl interpreter. An attacker, able to provide a specially crafted regular expression, could cause a denial of service...

7.5CVSS2.8AI score0.06207EPSS
Exploits0References1
Rows per page
Query Builder