MNBSD-2023-11: Perl regular expression buffer overflow

Severity: Unknown

Affected Package: perl

Summary: Perl regular expression buffer overflow

Description

A crafted regular expression when compiled by perl 5.30.0 through 5.38.0 can cause a one-byte attacker controlled buffer overflow in a heap allocated buffer.

Affected Versions

perl

Specific versions:

2.2.0
2.2.1
2.2.2
2.2.3
2.2.4
2.2.5
2.2.6
2.2.7
2.2.8
3.0.0
3.0.1
3.0.2
3.1.0
3.1.1
3.1.2

Recommendations

No specific recommendations provided.

References

https://nvd.nist.gov/vuln/detail/CVE-2023-47038

Additional Information

Aliases: CVE-2023-47038

Published: December 27, 2023
Last Modified: December 27, 2023