CLSA-2026-1778177253 perl: Fix of 2 CVEs

CVE-2023-47038: fix write past buffer end via illegal user-defined Unicode property, for almalinux9.2esu - CVE-2025-40909: clone dirhandles without fchdir, for almalinux9.2esu...

MiracleLinux 8 : perl:5.32 security fix (AXSA:2024-8812:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8812:01 advisory. perl: Write past buffer end via illegal user-defined Unicode property CVE-2023-47038 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : perl-5.32.1-481.el9 (AXSA:2024-7769:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7769:02 advisory. perl: Write past buffer end via illegal user-defined Unicode property CVE-2023-47038 Tenable has extracted the preceding description block directly from the...

EUVD-2017-16224

Malware in sbrugna...

EUVD-2022-24876

Malicious code in bioql PyPI...

Perl: write past buffer end via illegal user-defined unicode property

...

RLSA-2024:2228 Moderate: perl security update

Perl is a high-level programming language that is commonly used for system administration utilities and web programming. Security Fixes: perl: Write past buffer end via illegal user-defined Unicode property CVE-2023-47038 For more details about the security issues, including the impact, a CVSS...

RLSA-2024:3128 Moderate: perl:5.32 security update

Perl is a high-level programming language that is commonly used for system administration utilities and web programming. Security Fixes: perl: Write past buffer end via illegal user-defined Unicode property CVE-2023-47038 For more details about the security issues, including the impact, a CVSS...

Malicious code in plugin-transform-unicode-property-regex (npm)

--- -= Per source details. Do not edit below this line.=-...

MGASA-2024-0021 Updated perl packages fix a security vulnerability

The updated packages fix a security vulnerability: Write past buffer end via illegal user-defined Unicode property. CVE-2023-47038...

NewStart CGSL MAIN 6.06 : pcre2 Vulnerability (NS-SA-2023-0079)

The remote NewStart CGSL host, running version MAIN 6.06, has pcre2 packages installed that are affected by a vulnerability: - An out-of-bounds read vulnerability was discovered in the PCRE2 library in the compilexclassmatchingpath function of the pcre2jitcompile.c file. This involves a unicode...

Fedora 39 : perl / perl-Devel-Cover / perl-PAR-Packer / polymake (2023-c67f4dbf13)

The remote Fedora 39 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2023-c67f4dbf13 advisory. Security fix for CVE-2023-47038 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

Rocky Linux 9 : pcre2 (RLSA-2022:5251)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:5251 advisory. - An out-of-bounds read vulnerability was discovered in the PCRE2 library in the compilexclassmatchingpath function of the pcre2jitcompile.c file. This...

Rocky Linux 8 : pcre2 (RLSA-2022:5809)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:5809 advisory. - An out-of-bounds read vulnerability was discovered in the PCRE2 library in the compilexclassmatchingpath function of the pcre2jitcompile.c file. This involves ...

Ubuntu 18.04 ESM : PCRE vulnerabilities (USN-5627-2)

The remote Ubuntu 18.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5627-2 advisory. USN-5627-1 fixed several vulnerabilities in PCRE. This update provides the corresponding fixes for Ubuntu 18.04 ESM. Tenable has extracted the preceding...

Huawei EulerOS: Security Advisory for pcre2 (EulerOS-SA-2023-1738)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization 3.0.2.0 : pcre2 (EulerOS-SA-2023-1738)

According to the versions of the pcre2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An out-of-bounds read vulnerability was discovered in the PCRE2 library in the compilexclassmatchingpath function of the...

Amazon Linux 2023 : pcre2, pcre2-devel, pcre2-static (ALAS2023-2023-045)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-045 advisory. An out-of-bounds read vulnerability was discovered in the PCRE2 library in the compilexclassmatchingpath function of the pcre2jitcompile.c file. This involves a unicode property matching issue ...

[SECURITY] [DLA 3363-1] pcre2 security update

Debian LTS Advisory DLA-3363-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin March 16, 2023 https://wiki.debian.org/LTS Package : pcre2 Version : 10.32-5+deb10u1 CVE ID : CVE-2019-20454 CVE-2022-1586 CVE-2022-1587 Debian Bug : 1011954 Multiple out-of-bounds read...

SUSE CVE-2017-7186

libpcre1 in PCRE 8.40 and libpcre2 in PCRE2 10.23 allow remote attackers to cause a denial of service segmentation violation for read access, and application crash by triggering an invalid Unicode property lookup...