USN-5689-1: Perl vulnerability
19 October 2022
Perl could be made to by pass signature verification.
Releases
Packages
- perl - Practical Extraction and Report Language
Details
It was discovered that Perl incorrectly handled certain signature verification.
An remote attacker could possibly use this issue to bypass signature verification.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 22.04
Ubuntu 20.04
Ubuntu 18.04
Ubuntu 16.04
-
perl
-
5.22.1-9ubuntu0.9+esm1
Available with Ubuntu Pro
Ubuntu 14.04
-
perl
-
5.18.2-2ubuntu1.7+esm4
Available with Ubuntu Pro
In general, a standard system update will make all the necessary changes.
References
Related notices
- USN-5689-2: perl, perl-debug, perl-base, libperl-dev, perl-modules-5.34, perl-doc, libperl5.34