Novell Home

CVE-2010-4777

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2010-4777 at MITRE

Description

The Perl_reg_numbered_buff_fetch function in Perl 5.10.0, 5.12.0, 5.14.0, and other versions, when running with debugging enabled, allows context-dependent attackers to cause a denial of service (assertion failure and application exit) via crafted input that is not properly handled when using certain regular expressions, as demonstrated by causing SpamAssassin and OCSInventory to crash.

NVD CVSS v2 Base Score: 4.3 (AV:N/AC:M/Au:N/C:N/I:N/A:P)

Novell/SUSE information

No Novell Bugzilla entries cross referenced.

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SLE 11 SP1 DEBUGINFO
  • perl-debuginfo >= 5.10.0-64.55.1
  • perl-debugsource >= 5.10.0-64.55.1
sle11-sp1-sdk.ppc
sles11-sp1.ia64
sle11-sp1-sdk.ia64
sles11-sp1-vmware.x86-64
sled11-sp1.x86-64
sle11-sp1-sdk.s390x
sle11-sp1-sdk.x86-64
sles11-sp1.x86-64
sles11-sp1.ppc
sles11-sp1-vmware.x86
sles11-sp1.s390x
sles11-sp1.x86
sled11-sp1.x86
SAT Patch Nr: 4499
SLE 11 SP1 DEBUGINFO
  • perl-debuginfo >= 5.10.0-64.55.1
  • perl-debuginfo-x86 >= 5.10.0-64.55.1
  • perl-debugsource >= 5.10.0-64.55.1
sle11-sp1-sdk.ppc
sles11-sp1.ia64
sle11-sp1-sdk.ia64
sles11-sp1-vmware.x86-64
sled11-sp1.x86-64
sle11-sp1-sdk.s390x
sle11-sp1-sdk.x86-64
sles11-sp1.x86-64
sles11-sp1.ppc
sles11-sp1-vmware.x86
sles11-sp1.s390x
sles11-sp1.x86
sled11-sp1.x86
SAT Patch Nr: 4499
SLE 11 SP1 DEBUGINFO
  • perl-debuginfo >= 5.10.0-64.55.1
  • perl-debuginfo-32bit >= 5.10.0-64.55.1
  • perl-debugsource >= 5.10.0-64.55.1
sle11-sp1-sdk.ppc
sles11-sp1.ia64
sle11-sp1-sdk.ia64
sles11-sp1-vmware.x86-64
sled11-sp1.x86-64
sle11-sp1-sdk.s390x
sle11-sp1-sdk.x86-64
sles11-sp1.x86-64
sles11-sp1.ppc
sles11-sp1-vmware.x86
sles11-sp1.s390x
sles11-sp1.x86
sled11-sp1.x86
SAT Patch Nr: 4499
SUSE Linux Enterprise Software Development Kit 11 SP1
  • perl-base-x86 >= 5.10.0-64.55.1
sle11-sp1-sdk.ppc
sles11-sp1.ia64
sle11-sp1-sdk.ia64
sles11-sp1-vmware.x86-64
sled11-sp1.x86-64
sle11-sp1-sdk.s390x
sle11-sp1-sdk.x86-64
sles11-sp1.x86-64
sles11-sp1.ppc
sles11-sp1-vmware.x86
sles11-sp1.s390x
sles11-sp1.x86
sled11-sp1.x86
SAT Patch Nr: 4499
SUSE Linux Enterprise Software Development Kit 11 SP1
  • perl-base-32bit >= 5.10.0-64.55.1
sle11-sp1-sdk.ppc
sles11-sp1.ia64
sle11-sp1-sdk.ia64
sles11-sp1-vmware.x86-64
sled11-sp1.x86-64
sle11-sp1-sdk.s390x
sle11-sp1-sdk.x86-64
sles11-sp1.x86-64
sles11-sp1.ppc
sles11-sp1-vmware.x86
sles11-sp1.s390x
sles11-sp1.x86
sled11-sp1.x86
SAT Patch Nr: 4499
SUSE Linux Enterprise Desktop 11 SP1
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP1 for VMware
  • perl >= 5.10.0-64.55.1
  • perl-base >= 5.10.0-64.55.1
  • perl-doc >= 5.10.0-64.55.1
sle11-sp1-sdk.ppc
sles11-sp1.ia64
sle11-sp1-sdk.ia64
sles11-sp1-vmware.x86-64
sled11-sp1.x86-64
sle11-sp1-sdk.s390x
sle11-sp1-sdk.x86-64
sles11-sp1.x86-64
sles11-sp1.ppc
sles11-sp1-vmware.x86
sles11-sp1.s390x
sles11-sp1.x86
sled11-sp1.x86
SAT Patch Nr: 4499
SUSE Linux Enterprise Server 11 SP1
  • perl >= 5.10.0-64.55.1
  • perl-base >= 5.10.0-64.55.1
  • perl-doc >= 5.10.0-64.55.1
  • perl-x86 >= 5.10.0-64.55.1
sle11-sp1-sdk.ppc
sles11-sp1.ia64
sle11-sp1-sdk.ia64
sles11-sp1-vmware.x86-64
sled11-sp1.x86-64
sle11-sp1-sdk.s390x
sle11-sp1-sdk.x86-64
sles11-sp1.x86-64
sles11-sp1.ppc
sles11-sp1-vmware.x86
sles11-sp1.s390x
sles11-sp1.x86
sled11-sp1.x86
SAT Patch Nr: 4499
SUSE Linux Enterprise Desktop 11 SP1
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP1 for VMware
  • perl >= 5.10.0-64.55.1
  • perl-32bit >= 5.10.0-64.55.1
  • perl-base >= 5.10.0-64.55.1
  • perl-doc >= 5.10.0-64.55.1
sle11-sp1-sdk.ppc
sles11-sp1.ia64
sle11-sp1-sdk.ia64
sles11-sp1-vmware.x86-64
sled11-sp1.x86-64
sle11-sp1-sdk.s390x
sle11-sp1-sdk.x86-64
sles11-sp1.x86-64
sles11-sp1.ppc
sles11-sp1-vmware.x86
sles11-sp1.s390x
sles11-sp1.x86
sled11-sp1.x86
SAT Patch Nr: 4499
openSUSE 11.2
  • perl-base-debuginfo >= 5.10.0-72.11.1
  • perl-base-debuginfo-32bit >= 5.10.0-72.11.1
  • perl-debuginfo >= 5.10.0-72.11.1
  • perl-debuginfo-32bit >= 5.10.0-72.11.1
  • perl-debugsource >= 5.10.0-72.11.1
openSUSE 11.2
  • perl >= 5.10.0-72.11.1
  • perl-32bit >= 5.10.0-72.11.1
  • perl-base >= 5.10.0-72.11.1
  • perl-base-32bit >= 5.10.0-72.11.1
  • perl-doc >= 5.10.0-72.11.1
openSUSE 11.3
  • perl-base-debuginfo >= 5.12.1-2.5.1
  • perl-base-debuginfo-32bit >= 5.12.1-2.5.1
  • perl-debuginfo >= 5.12.1-2.5.1
  • perl-debuginfo-32bit >= 5.12.1-2.5.1
  • perl-debugsource >= 5.12.1-2.5.1
openSUSE 11.3
  • perl >= 5.12.1-2.5.1
  • perl-32bit >= 5.12.1-2.5.1
  • perl-base >= 5.12.1-2.5.1
  • perl-base-32bit >= 5.12.1-2.5.1
  • perl-doc >= 5.12.1-2.5.1
openSUSE 11.4 DEBUGINFO
  • perl-base-debuginfo >= 5.12.3-11.16.1
  • perl-base-debuginfo-32bit >= 5.12.3-11.16.1
  • perl-debuginfo >= 5.12.3-11.16.1
  • perl-debuginfo-32bit >= 5.12.3-11.16.1
  • perl-debugsource >= 5.12.3-11.16.1
openSUSE 11.4
  • perl >= 5.12.3-11.16.1
  • perl-32bit >= 5.12.3-11.16.1
  • perl-base >= 5.12.3-11.16.1
  • perl-base-32bit >= 5.12.3-11.16.1
  • perl-doc >= 5.12.3-11.16.1

© 2014 Novell