Lucene search
Ubuntu.comUB:CVE-2014-0477HistoryJul 03, 2014 - 12:00 a.m.
CVE-2014-0477
2014-07-0300:00:00
ubuntu.com
ubuntu.com
11
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.039 Low
EPSS
Percentile
91.9%
The parse function in Email::Address module before 1.905 for Perl uses an
inefficient regular expression, which allows remote attackers to cause a
denial of service (CPU consumption) via an empty quoted string in an RFC
2822 address.
Notes
| Author | Note |
|---|---|
| mdeslaur | fixes in both 1.904 and 1.905 (and maybe before?) |
Related
debian
debian
libemail-address-perl security update
2014-06-29 19:09:32
[SECURITY] [DSA 2969-1] libemail-address-perl security update
2014-06-27 18:28:03
[SECURITY] [DSA 2969-1] libemail-address-perl security update
2014-06-27 18:27:42
openvas
openvas
Fedora Update for perl-Email-Address FEDORA-2014-7610
2014-10-01 00:00:00
Fedora Update for perl-Email-Address FEDORA-2014-7613
2014-10-01 00:00:00
nessus
nessus
openSUSE Security Update : perl-Email-Address (openSUSE-SU-2014:1328-1)
2014-10-29 00:00:00
Fedora 20 : perl-Email-Address-1.905-1.fc20 (2014-7613)
2014-09-29 00:00:00
Fedora 19 : perl-Email-Address-1.905-1.fc19 (2014-7610)
2014-09-29 00:00:00
osv
osv
libemail-address-perl - security update
2014-06-29 00:00:00
libemail-address-perl - security update
2014-06-27 00:00:00
cve
cve
CVE-2014-0477
2014-07-03 17:55:00
CVE-2014-4720
2014-07-06 23:55:00
cvelist
cvelist
CVE-2014-0477
2014-07-03 17:00:00
CVE-2014-4720
2022-10-03 16:20:46
debiancve
debiancve
CVE-2014-0477
2014-07-03 17:55:00
CVE-2014-4720
2014-07-06 23:55:00
prion
prion
Code injection
2014-07-03 17:55:00
Design/Logic Flaw
2014-07-06 23:55:00
fedora
fedora
[SECURITY] Fedora 19 Update: perl-Email-Address-1.905-1.fc19
2014-09-26 09:00:57
[SECURITY] Fedora 20 Update: perl-Email-Address-1.905-1.fc20
2014-09-26 09:03:08
securityvulns
securityvulns
[ MDVSA-2014:192 ] perl-Email-Address
2014-10-14 00:00:00
perl-Email-Address DoS
2014-10-14 00:00:00
ubuntucve
ubuntucve
CVE-2014-4720
2014-07-06 00:00:00
mageia
mageia
Updated perl-Email-Address packages fix security vulnerabilities
2014-09-26 19:55:04
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.039 Low
EPSS
Percentile
91.9%
Related for UB:CVE-2014-0477