CVE Reference: CVE-2010-1158

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2010-1158

Description:
Integer overflow in the regular expression engine in Perl 5.8.x allows context-dependent attackers to cause a denial of service (stack consumption and application crash) by matching a crafted regular expression against a long string.

CVE Status:
Candidate

References:

SAID
  Secunia Advisory: SA55314

MLIST
  http://www.openwall.com/lists/oss-security/2010/04/14/3
  http://www.openwall.com/lists/oss-security/2010/04/08/9

MISC
  http://bugs.gentoo.org/show_bug.cgi?id=313565

CONFIRM
  http://perldoc.perl.org/perl5100delta.html


Return to the previous page.