|
2018-06-07
|
CVE-2018-12015 |
In Perl through 5.26.2, the Archive::Tar module allows remote attackers to bypass a directory-traversal protection mechanism, and overwrite arbitrary files, via an archive file containing a symlink and a regular file with the same name. |
Mac_os_x,
Archive\:\:tar,
Ubuntu_linux,
Debian_linux,
Data_ontap_edge,
Oncommand_workflow_automation,
Snap_creator_framework,
Snapdrive,
Perl
|
7.5
|
|
|
2018-12-07
|
CVE-2018-18311 |
Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid write operations. |
Mac_os_x,
Ubuntu_linux,
Debian_linux,
Fedora,
Web_gateway,
E\-Series_santricity_os_controller,
Snap_creator_framework,
Snapcenter,
Snapdriver,
Perl,
Enterprise_linux,
Enterprise_linux_desktop,
Enterprise_linux_eus,
Enterprise_linux_server,
Enterprise_linux_server_aus,
Enterprise_linux_server_tus,
Enterprise_linux_workstation,
Openshift_container_platform
|
9.8
|
|
|
|
2018-04-17
|
CVE-2018-6913 |
Heap-based buffer overflow in the pack function in Perl before 5.26.2 allows context-dependent attackers to execute arbitrary code via a large item count. |
Ubuntu_linux,
Debian_linux,
Perl
|
9.8
|
|
|
2018-04-17
|
CVE-2018-6798 |
An issue was discovered in Perl 5.22 through 5.26. Matching a crafted locale dependent regular expression can cause a heap-based buffer over-read and potentially information disclosure. |
Ubuntu_linux,
Debian_linux,
Perl,
Enterprise_linux_server,
Enterprise_linux_workstation
|
7.5
|
|
|
2018-04-17
|
CVE-2018-6797 |
An issue was discovered in Perl 5.18 through 5.26. A crafted regular expression can cause a heap-based buffer overflow, with control over the bytes written. |
Ubuntu_linux,
Debian_linux,
Perl,
Enterprise_linux_server,
Enterprise_linux_workstation
|
9.8
|
|
|
2018-12-07
|
CVE-2018-18314 |
Perl before 5.26.3 has a buffer overflow via a crafted regular expression that triggers invalid write operations. |
Ubuntu_linux,
Debian_linux,
E\-Series_santricity_os_controller,
Snap_creator_framework,
Snapcenter,
Snapdrive,
Perl,
Enterprise_linux
|
9.8
|
|
|
|
2018-12-07
|
CVE-2018-18313 |
Perl before 5.26.3 has a buffer over-read via a crafted regular expression that triggers disclosure of sensitive information from process memory. |
Mac_os_x,
Ubuntu_linux,
Debian_linux,
E\-Series_santricity_os_controller,
Snap_creator_framework,
Snapcenter,
Snapdrive,
Perl,
Enterprise_linux
|
9.1
|
|
|
|
2018-12-05
|
CVE-2018-18312 |
Perl before 5.26.3 and 5.28.0 before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid write operations. |
Ubuntu_linux,
Debian_linux,
E\-Series_santricity_os_controller,
Snap_creator_framework,
Snapcenter,
Snapdrive,
Perl,
Enterprise_linux
|
9.8
|
|
|
2017-09-19
|
CVE-2017-12883 |
Buffer overflow in the S_grok_bslash_N function in regcomp.c in Perl 5 before 5.24.3-RC1 and 5.26.x before 5.26.1-RC1 allows remote attackers to disclose sensitive information or cause a denial of service (application crash) via a crafted regular expression with an invalid '\N{U+...}' escape. |
Perl
|
9.1
|
|
|
2017-09-19
|
CVE-2017-12837 |
Heap-based buffer overflow in the S_regatom function in regcomp.c in Perl 5 before 5.24.3-RC1 and 5.26.x before 5.26.1-RC1 allows remote attackers to cause a denial of service (out-of-bounds write) via a regular expression with a '\N{}' escape and the case-insensitive modifier. |
Perl
|
7.5
|
|