CVE-2013-7422
Published: 16 August 2015
Integer underflow in regcomp.c in Perl before 5.20, as used in Apple OS X before 10.10.5 and other products, allows context-dependent attackers to execute arbitrary code or cause a denial of service (application crash) via a long digit string associated with an invalid backreference within a regular expression.
Priority
Status
Package | Release | Status |
---|---|---|
perl Launchpad, Ubuntu, Debian |
lucid |
Ignored
(end of life)
|
precise |
Released
(5.14.2-6ubuntu2.5)
|
|
trusty |
Released
(5.18.2-2ubuntu1.1)
|
|
upstream |
Released
(5.20.0-1)
|
|
utopic |
Not vulnerable
(5.20.1-1)
|
|
vivid |
Not vulnerable
|
|
wily |
Not vulnerable
|
|
Patches: upstream: http://perl5.git.perl.org/perl.git/commitdiff/0c2990d652e985784f095bba4bc356481a66aa06 |