Headline
RHSA-2021:1032: Red Hat Security Advisory: perl security update
An update for perl is now available for Red Hat Enterprise Linux 7.7 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Perl is a high-level programming language that is commonly used for system administration utilities and web programming. Security Fix(es):
- perl: heap-based buffer overflow in regular expression compiler leads to DoS (CVE-2020-10543)
- perl: corruption of intermediate language state of compiled regular expression due to integer overflow leads to DoS (CVE-2020-10878)
- perl: corruption of intermediate language state of compiled regular expression due to recursive S_study_chunk() calls leads to DoS (CVE-2020-12723) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Related CVEs:
- CVE-2020-10543: perl: heap-based buffer overflow in regular expression compiler leads to DoS
- CVE-2020-10878: perl: corruption of intermediate language state of compiled regular expression due to integer overflow leads to DoS
- CVE-2020-12723: perl: corruption of intermediate language state of compiled regular expression due to recursive S_study_chunk() calls leads to DoS