LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

Interview: Kristen Carlson Accardi

LWN.net Weekly Edition for July 24, 2008

Tracing: no shortage of options

Interview: Wind River's John Bruggeman

LWN.net Weekly Edition for July 17, 2008

Printable page
Weekly edition Kernel Security Distributions Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ

perl: heap buffer overflow

Package(s):perl CVE #(s):CVE-2008-1927
Created:April 25, 2008 Updated:June 18, 2008
Description: From the Debian advisory: It has been discovered that the Perl interpreter may encounter a buffer overflow condition when compiling certain regular expressions containing Unicode characters. This also happens if the offending characters are contained in a variable reference protected by the \Q...\E quoting construct. When encountering this condition, the Perl interpreter typically crashes, but arbitrary code execution cannot be ruled out.
Alerts:
Debian DSA-1556-1 2008-04-24
Debian DSA-1556-2 2008-04-27
Fedora FEDORA-2008-3399 2008-04-29
Fedora FEDORA-2008-3392 2008-04-29
Mandriva MDVSA-2008:100 2007-05-11
Gentoo 200805-17 2008-05-20
CentOS CESA-2008:0522 2008-06-12
Red Hat RHSA-2008:0522-01 2008-06-11
Red Hat RHSA-2008:0532-01 2008-06-17
(Log in to post comments)

Copyright © 2008, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds
Powered by Rackspace Managed Hosting.