Your submission was sent successfully! Close

You have successfully unsubscribed! Close

CVE-2018-18311

Published: 29 November 2018

Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid write operations.

Notes

Author	Note
upstream	5.8.0 - 5.26 (introduced in e658793210bb)

Priority

CVSS 3 base score: 9.8

Status

Package	Release	Status
perl Launchpad, Ubuntu, Debian	bionic	Released (5.26.1-6ubuntu0.3)
	cosmic	Released (5.26.2-7ubuntu0.1)
	precise	Released (5.14.2-6ubuntu2.9)
	trusty	Released (5.18.2-2ubuntu1.7)
	upstream	Released (5.28.1-1)
	xenial	Released (5.22.1-9ubuntu0.6)

References

Bugs

https://rt.perl.org/Public/Bug/Display.html?id=133204

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading