perl: Integer overflow leading to buffer overflow in Perl_my_setenv()

Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid write operations...

RHEL 7 : perl (RHSA-2019:0109)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:0109 advisory. Perl is a high-level programming language that is commonly used for system administration utilities and web programming. Security Fixes: perl: Intege...

Debian: Security Advisory (DLA-1601-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Internet Bug Bounty: Integer overflow leading to buffer overflow

There exists an integer overflow in Perlmysetenv @ util.c : 2070 2070: void PerlmysetenvpTHX const char nam, const char val ... 2166: const int nlen = strlennam; ... 2171: vlen = strlenval; 2172: newenv = charsafesysmallocnlen + vlen + 2 sizeofchar; Here in a 64 bit version of Perl, since the...