Your submission was sent successfully! Close

CVE-2013-7422

Published: 16 August 2015

Integer underflow in regcomp.c in Perl before 5.20, as used in Apple OS X before 10.10.5 and other products, allows context-dependent attackers to execute arbitrary code or cause a denial of service (application crash) via a long digit string associated with an invalid backreference within a regular expression.

Priority

Low

Status

Package Release Status
perl
Launchpad, Ubuntu, Debian
Upstream
Released (5.20.0-1)
Ubuntu 14.04 ESM (Trusty Tahr)
Released (5.18.2-2ubuntu1.1)
Patches:
Upstream: http://perl5.git.perl.org/perl.git/commitdiff/0c2990d652e985784f095bba4bc356481a66aa06