Perl : Security Vulnerabilities, CVEs, Published In 2012 (Denial of service)
Heap-based buffer overflow in the Perl_repeatcpy function in util.c in Perl 5.12.x before 5.12.5, 5.14.x before 5.14.3, and 5.15.x before 15.15.5 allows context-dependent attackers to cause a denial of service (memory consumption and crash) or possibly execute arbitrary code via the 'x' string repeat operator.
Max CVSS
7.5
EPSS Score
1.92%
Published
2012-12-18
Updated
2016-12-08
Multiple format string vulnerabilities in dbdimp.c in DBD::Pg (aka DBD-Pg or libdbd-pg-perl) module before 2.19.0 for Perl allow remote PostgreSQL database servers to cause a denial of service (process crash) via format string specifiers in (1) a crafted database warning to the pg_warn function or (2) a crafted DBD statement to the dbd_st_prepare function.
Max CVSS
5.0
EPSS Score
2.88%
Published
2012-09-09
Updated
2017-08-29
Off-by-one error in the decode_xs function in Unicode/Unicode.xs in the Encode module before 2.44, as used in Perl before 5.15.6, might allow context-dependent attackers to cause a denial of service (memory corruption) via a crafted Unicode string, which triggers a heap-based buffer overflow.
Max CVSS
5.1
EPSS Score
1.72%
Published
2012-01-13
Updated
2023-02-13
The bsd_glob function in the File::Glob module for Perl before 5.14.2 allows context-dependent attackers to cause a denial of service (crash) via a glob expression with the GLOB_ALTDIRFUNC flag, which triggers an uninitialized pointer dereference.
Max CVSS
4.3
EPSS Score
0.68%
Published
2012-12-21
Updated
2013-01-29
4 vulnerabilities found