CVE-2020-10878
Description
Perl before 5.30.3 has an integer overflow related to mishandling of a PL_regkind[OP(n)] == NOTHING situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection.
Risk Information
Base Score
8.6
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
EPSS Score
Exploitation Probability
0.107
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple Vulnerabilities are affected in Netapp Oncommand Workflow Automation - | Windows |
| Multiple Vulnerabilities are affected in IBM Security Guardium 11.3 | Windows |
| Multiple Vulnerabilities are affected in IBM Security Guardium 11.4 | Windows |
| Multiple Vulnerabilities are affected in IBM Security Guardium 11.5 | Windows |
| Multiple vulnerabilities are fixed in MacOS Catalina 10.15.6 | Mac |
| Multiple vulnerabilities are fixed in macOS Catalina 10.15.6 Combo Update | Mac |
| SUSE-SU-2020:1662-1(SUSE Linux Enterprise Server 12-SP4 ) perl-5.18.2-12.23.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1662-1(SUSE Linux Enterprise Server 12-SP4 ) perl-32bit-5.18.2-12.23.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1662-1(SUSE Linux Enterprise Server 12-SP4 ) perl-base-5.18.2-12.23.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1662-1(SUSE Linux Enterprise Server 12-SP4 ) perl-base-debuginfo-5.18.2-12.23.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1662-1(SUSE Linux Enterprise Server 12-SP4 ) perl-debuginfo-5.18.2-12.23.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1662-1(SUSE Linux Enterprise Server 12-SP4 ) perl-debuginfo-32bit-5.18.2-12.23.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1662-1(SUSE Linux Enterprise Server 12-SP4 ) perl-debugsource-5.18.2-12.23.1.x86_64.rpm | Linux |
| SUSE-SU-2020:1662-1(SUSE Linux Enterprise Server 12-SP4 ) perl-doc-5.18.2-12.23.1.noarch.rpm | Linux |
| SUSE-SU-2020:1662-1(SUSE Linux Enterprise Server 12-SP5 ) perl-5.18.2-12.23.1.x86_64_SP5.rpm | Linux |
| SUSE-SU-2020:1662-1(SUSE Linux Enterprise Server 12-SP5 ) perl-32bit-5.18.2-12.23.1.x86_64_SP5.rpm | Linux |
| SUSE-SU-2020:1662-1(SUSE Linux Enterprise Server 12-SP5 ) perl-base-5.18.2-12.23.1.x86_64_SP5.rpm | Linux |
| SUSE-SU-2020:1662-1(SUSE Linux Enterprise Server 12-SP5 ) perl-base-debuginfo-5.18.2-12.23.1.x86_64_SP5.rpm | Linux |
| SUSE-SU-2020:1662-1(SUSE Linux Enterprise Server 12-SP5 ) perl-debuginfo-5.18.2-12.23.1.x86_64_SP5.rpm | Linux |
| SUSE-SU-2020:1662-1(SUSE Linux Enterprise Server 12-SP5 ) perl-debuginfo-32bit-5.18.2-12.23.1.x86_64_SP5.rpm | Linux |
| SUSE-SU-2020:1662-1(SUSE Linux Enterprise Server 12-SP5 ) perl-debugsource-5.18.2-12.23.1.x86_64_SP5.rpm | Linux |
| SUSE-SU-2020:1662-1(SUSE Linux Enterprise Server 12-SP5 ) perl-doc-5.18.2-12.23.1.noarch_SP5.rpm | Linux |
| Practical Extraction and Report Language (USN-4602-1) perl_5.22.1-9ubuntu0.9_i386.deb | Linux |
| Practical Extraction and Report Language (USN-4602-1) perl_5.22.1-9ubuntu0.9_amd64.deb | Linux |
| Practical Extraction and Report Language (USN-4602-1) perl_5.26.1-6ubuntu0.5_i386.deb | Linux |
| Practical Extraction and Report Language (USN-4602-1) perl_5.26.1-6ubuntu0.5_amd64.deb | Linux |
| Practical Extraction and Report Language (USN-4602-1) perl_5.30.0-9ubuntu0.2_i386.deb | Linux |
| Practical Extraction and Report Language (USN-4602-1) perl_5.30.0-9ubuntu0.2_amd64.deb | Linux |
| Perl update (ELSA-2021-0343) perl-5.16.3-299.el7_9.x86_64.rpm | Linux |
| Perl-CPAN update (ELSA-2021-0343) perl-CPAN-1.9800-299.el7_9.noarch.rpm | Linux |
| Perl-ExtUtils-CBuilder update (ELSA-2021-0343) perl-ExtUtils-CBuilder-0.28.2.6-299.el7_9.noarch.rpm | Linux |
| Perl-ExtUtils-Embed update (ELSA-2021-0343) perl-ExtUtils-Embed-1.30-299.el7_9.noarch.rpm | Linux |
| Perl-ExtUtils-Install update (ELSA-2021-0343) perl-ExtUtils-Install-1.58-299.el7_9.noarch.rpm | Linux |
| Perl-IO-Zlib update (ELSA-2021-0343) perl-IO-Zlib-1.10-299.el7_9.noarch.rpm | Linux |
| Perl-Locale-Maketext-Simple update (ELSA-2021-0343) perl-Locale-Maketext-Simple-0.21-299.el7_9.noarch.rpm | Linux |
| Perl-Module-CoreList update (ELSA-2021-0343) perl-Module-CoreList-2.76.02-299.el7_9.noarch.rpm | Linux |
| Perl-Module-Loaded update (ELSA-2021-0343) perl-Module-Loaded-0.08-299.el7_9.noarch.rpm | Linux |
| Perl-Object-Accessor update (ELSA-2021-0343) perl-Object-Accessor-0.42-299.el7_9.noarch.rpm | Linux |
| Perl-Package-Constants update (ELSA-2021-0343) perl-Package-Constants-0.02-299.el7_9.noarch.rpm | Linux |
| Perl-Pod-Escapes update (ELSA-2021-0343) perl-Pod-Escapes-1.04-299.el7_9.noarch.rpm | Linux |
| Perl-Time-Piece update (ELSA-2021-0343) perl-Time-Piece-1.20.1-299.el7_9.x86_64.rpm | Linux |
| Perl-core update (ELSA-2021-0343) perl-core-5.16.3-299.el7_9.x86_64.rpm | Linux |
| Perl-devel update (ELSA-2021-0343) perl-devel-5.16.3-299.el7_9.i686.rpm | Linux |
| Perl-devel update (ELSA-2021-0343) perl-devel-5.16.3-299.el7_9.x86_64.rpm | Linux |
| Perl-libs update (ELSA-2021-0343) perl-libs-5.16.3-299.el7_9.i686.rpm | Linux |
| Perl-libs update (ELSA-2021-0343) perl-libs-5.16.3-299.el7_9.x86_64.rpm | Linux |
| Perl-macros update (ELSA-2021-0343) perl-macros-5.16.3-299.el7_9.x86_64.rpm | Linux |
| Perl-tests update (ELSA-2021-0343) perl-tests-5.16.3-299.el7_9.x86_64.rpm | Linux |
| (RHSA-2021:0343) perl security update perl-5.16.3-299.el7_9.x86_64.rpm | Linux |
| (RHSA-2021:0343) perl security update perl-CPAN-1.9800-299.el7_9.noarch.rpm | Linux |
| (RHSA-2021:0343) perl security update perl-ExtUtils-CBuilder-0.28.2.6-299.el7_9.noarch.rpm | Linux |
| (RHSA-2021:0343) perl security update perl-ExtUtils-Embed-1.30-299.el7_9.noarch.rpm | Linux |
| (RHSA-2021:0343) perl security update perl-ExtUtils-Install-1.58-299.el7_9.noarch.rpm | Linux |
| (RHSA-2021:0343) perl security update perl-IO-Zlib-1.10-299.el7_9.noarch.rpm | Linux |
| (RHSA-2021:0343) perl security update perl-Locale-Maketext-Simple-0.21-299.el7_9.noarch.rpm | Linux |
| (RHSA-2021:0343) perl security update perl-Module-CoreList-2.76.02-299.el7_9.noarch.rpm | Linux |
| (RHSA-2021:0343) perl security update perl-Module-Loaded-0.08-299.el7_9.noarch.rpm | Linux |
| (RHSA-2021:0343) perl security update perl-Object-Accessor-0.42-299.el7_9.noarch.rpm | Linux |
| (RHSA-2021:0343) perl security update perl-Package-Constants-0.02-299.el7_9.noarch.rpm | Linux |
| (RHSA-2021:0343) perl security update perl-Pod-Escapes-1.04-299.el7_9.noarch.rpm | Linux |
| (RHSA-2021:0343) perl security update perl-Time-Piece-1.20.1-299.el7_9.x86_64.rpm | Linux |
| (RHSA-2021:0343) perl security update perl-core-5.16.3-299.el7_9.x86_64.rpm | Linux |
| (RHSA-2021:0343) perl security update perl-devel-5.16.3-299.el7_9.i686.rpm | Linux |
| (RHSA-2021:0343) perl security update perl-devel-5.16.3-299.el7_9.x86_64.rpm | Linux |
| (RHSA-2021:0343) perl security update perl-libs-5.16.3-299.el7_9.i686.rpm | Linux |
| (RHSA-2021:0343) perl security update perl-libs-5.16.3-299.el7_9.x86_64.rpm | Linux |
| (RHSA-2021:0343) perl security update perl-macros-5.16.3-299.el7_9.x86_64.rpm | Linux |
| (RHSA-2021:0343) perl security update perl-tests-5.16.3-299.el7_9.x86_64.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-5.26.3-419.el8.x86_64.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-Attribute-Handlers-0.99-419.el8.noarch.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-Devel-Peek-1.26-419.el8.x86_64.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-Devel-SelfStubber-1.06-419.el8.noarch.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-Errno-1.28-419.el8.x86_64.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-ExtUtils-Embed-1.34-419.el8.noarch.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-ExtUtils-Miniperl-1.06-419.el8.noarch.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-IO-1.38-419.el8.x86_64.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-IO-Zlib-1.10-419.el8.noarch.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-Locale-Maketext-Simple-0.21-419.el8.noarch.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-Math-Complex-1.59-419.el8.noarch.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-Memoize-1.03-419.el8.noarch.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-Module-Loaded-0.08-419.el8.noarch.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-Net-Ping-2.55-419.el8.noarch.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-Pod-Html-1.22.02-419.el8.noarch.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-SelfLoader-1.23-419.el8.noarch.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-Test-1.30-419.el8.noarch.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-Time-Piece-1.31-419.el8.x86_64.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-debugsource-5.26.3-419.el8.i686.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-debugsource-5.26.3-419.el8.x86_64.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-devel-5.26.3-419.el8.i686.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-devel-5.26.3-419.el8.x86_64.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-interpreter-5.26.3-419.el8.x86_64.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-libnetcfg-5.26.3-419.el8.noarch.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-libs-5.26.3-419.el8.i686.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-libs-5.26.3-419.el8.x86_64.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-macros-5.26.3-419.el8.x86_64.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-open-1.11-419.el8.noarch.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-tests-5.26.3-419.el8.x86_64.rpm | Linux |
| (RHSA-2021:1678) perl security and bug fix update perl-utils-5.26.3-419.el8.noarch.rpm | Linux |
| (CESA-2021:0343) perl security update perl-5.16.3-299.el7_9.x86_64.rpm | Linux |
| (CESA-2021:0343) perl security update perl-CPAN-1.9800-299.el7_9.noarch.rpm | Linux |
| (CESA-2021:0343) perl security update perl-ExtUtils-CBuilder-0.28.2.6-299.el7_9.noarch.rpm | Linux |
| (CESA-2021:0343) perl security update perl-ExtUtils-Embed-1.30-299.el7_9.noarch.rpm | Linux |
| (CESA-2021:0343) perl security update perl-ExtUtils-Install-1.58-299.el7_9.noarch.rpm | Linux |
| (CESA-2021:0343) perl security update perl-IO-Zlib-1.10-299.el7_9.noarch.rpm | Linux |
| (CESA-2021:0343) perl security update perl-Locale-Maketext-Simple-0.21-299.el7_9.noarch.rpm | Linux |
| (CESA-2021:0343) perl security update perl-Module-CoreList-2.76.02-299.el7_9.noarch.rpm | Linux |
| (CESA-2021:0343) perl security update perl-Module-Loaded-0.08-299.el7_9.noarch.rpm | Linux |
| (CESA-2021:0343) perl security update perl-Object-Accessor-0.42-299.el7_9.noarch.rpm | Linux |
| (CESA-2021:0343) perl security update perl-Package-Constants-0.02-299.el7_9.noarch.rpm | Linux |
| (CESA-2021:0343) perl security update perl-Pod-Escapes-1.04-299.el7_9.noarch.rpm | Linux |
| (CESA-2021:0343) perl security update perl-Time-Piece-1.20.1-299.el7_9.x86_64.rpm | Linux |
| (CESA-2021:0343) perl security update perl-core-5.16.3-299.el7_9.x86_64.rpm | Linux |
| (CESA-2021:0343) perl security update perl-devel-5.16.3-299.el7_9.i686.rpm | Linux |
| (CESA-2021:0343) perl security update perl-devel-5.16.3-299.el7_9.x86_64.rpm | Linux |
| (CESA-2021:0343) perl security update perl-libs-5.16.3-299.el7_9.i686.rpm | Linux |
| (CESA-2021:0343) perl security update perl-libs-5.16.3-299.el7_9.x86_64.rpm | Linux |
| (CESA-2021:0343) perl security update perl-macros-5.16.3-299.el7_9.x86_64.rpm | Linux |
| (CESA-2021:0343) perl security update perl-tests-5.16.3-299.el7_9.x86_64.rpm | Linux |
| (RHSA-2021:0343)Moderate: security update perl-debuginfo-5.16.3-299.el7_9.i686.rpm | Linux |
| (RHSA-2021:0343)Moderate: security update perl-debuginfo-5.16.3-299.el7_9.x86_64.rpm | Linux |
| (RHSA-2021:1678)Moderate: security and bug fix update perl-Devel-Peek-debuginfo-1.26-419.el8.i686.rpm | Linux |
| (RHSA-2021:1678)Moderate: security and bug fix update perl-Devel-Peek-debuginfo-1.26-419.el8.x86_64.rpm | Linux |
| (RHSA-2021:1678)Moderate: security and bug fix update perl-IO-debuginfo-1.38-419.el8.i686.rpm | Linux |
| (RHSA-2021:1678)Moderate: security and bug fix update perl-IO-debuginfo-1.38-419.el8.x86_64.rpm | Linux |
| (RHSA-2021:1678)Moderate: security and bug fix update perl-Time-Piece-debuginfo-1.31-419.el8.i686.rpm | Linux |
| (RHSA-2021:1678)Moderate: security and bug fix update perl-Time-Piece-debuginfo-1.31-419.el8.x86_64.rpm | Linux |
| (RHSA-2021:1678)Moderate: security and bug fix update perl-debuginfo-5.26.3-419.el8.i686.rpm | Linux |
| (RHSA-2021:1678)Moderate: security and bug fix update perl-debuginfo-5.26.3-419.el8.x86_64.rpm | Linux |
| (RHSA-2021:1678)Moderate: security and bug fix update perl-interpreter-debuginfo-5.26.3-419.el8.i686.rpm | Linux |
| (RHSA-2021:1678)Moderate: security and bug fix update perl-interpreter-debuginfo-5.26.3-419.el8.x86_64.rpm | Linux |
| (RHSA-2021:1678)Moderate: security and bug fix update perl-libs-debuginfo-5.26.3-419.el8.i686.rpm | Linux |
| (RHSA-2021:1678)Moderate: security and bug fix update perl-libs-debuginfo-5.26.3-419.el8.x86_64.rpm | Linux |
| Practical Extraction and Report Language (USN-4602-2) perl_5.14.2-6ubuntu2.11_i386.deb | Linux |
| Practical Extraction and Report Language (USN-4602-2) perl_5.14.2-6ubuntu2.11_amd64.deb | Linux |
| Perl update (ELSA-2021-1678) perl-5.26.3-419.el8.x86_64.rpm | Linux |
| Perl-Attribute-Handlers update (ELSA-2021-1678) perl-Attribute-Handlers-0.99-419.el8.noarch.rpm | Linux |
| Perl-Devel-Peek update (ELSA-2021-1678) perl-Devel-Peek-1.26-419.el8.x86_64.rpm | Linux |
| Perl-Devel-SelfStubber update (ELSA-2021-1678) perl-Devel-SelfStubber-1.06-419.el8.noarch.rpm | Linux |
| Perl-Errno update (ELSA-2021-1678) perl-Errno-1.28-419.el8.x86_64.rpm | Linux |
| Perl-ExtUtils-Embed update (ELSA-2021-1678) perl-ExtUtils-Embed-1.34-419.el8.noarch.rpm | Linux |
| Perl-ExtUtils-Miniperl update (ELSA-2021-1678) perl-ExtUtils-Miniperl-1.06-419.el8.noarch.rpm | Linux |
| Perl-IO update (ELSA-2021-1678) perl-IO-1.38-419.el8.x86_64.rpm | Linux |
| Perl-IO-Zlib update (ELSA-2021-1678) perl-IO-Zlib-1.10-419.el8.noarch.rpm | Linux |
| Perl-Locale-Maketext-Simple update (ELSA-2021-1678) perl-Locale-Maketext-Simple-0.21-419.el8.noarch.rpm | Linux |
| Perl-Math-Complex update (ELSA-2021-1678) perl-Math-Complex-1.59-419.el8.noarch.rpm | Linux |
| Perl-Memoize update (ELSA-2021-1678) perl-Memoize-1.03-419.el8.noarch.rpm | Linux |
| Perl-Module-Loaded update (ELSA-2021-1678) perl-Module-Loaded-0.08-419.el8.noarch.rpm | Linux |
| Perl-Net-Ping update (ELSA-2021-1678) perl-Net-Ping-2.55-419.el8.noarch.rpm | Linux |
| Perl-Pod-Html update (ELSA-2021-1678) perl-Pod-Html-1.22.02-419.el8.noarch.rpm | Linux |
| Perl-SelfLoader update (ELSA-2021-1678) perl-SelfLoader-1.23-419.el8.noarch.rpm | Linux |
| Perl-Test update (ELSA-2021-1678) perl-Test-1.30-419.el8.noarch.rpm | Linux |
| Perl-Time-Piece update (ELSA-2021-1678) perl-Time-Piece-1.31-419.el8.x86_64.rpm | Linux |
| Perl-devel update (ELSA-2021-1678) perl-devel-5.26.3-419.el8.i686.rpm | Linux |
| Perl-devel update (ELSA-2021-1678) perl-devel-5.26.3-419.el8.x86_64.rpm | Linux |
| Perl-interpreter update (ELSA-2021-1678) perl-interpreter-5.26.3-419.el8.x86_64.rpm | Linux |
| Perl-libnetcfg update (ELSA-2021-1678) perl-libnetcfg-5.26.3-419.el8.noarch.rpm | Linux |
| Perl-libs update (ELSA-2021-1678) perl-libs-5.26.3-419.el8.i686.rpm | Linux |
| Perl-libs update (ELSA-2021-1678) perl-libs-5.26.3-419.el8.x86_64.rpm | Linux |
| Perl-macros update (ELSA-2021-1678) perl-macros-5.26.3-419.el8.x86_64.rpm | Linux |
| Perl-open update (ELSA-2021-1678) perl-open-1.11-419.el8.noarch.rpm | Linux |
| Perl-tests update (ELSA-2021-1678) perl-tests-5.26.3-419.el8.x86_64.rpm | Linux |
| Perl-utils update (ELSA-2021-1678) perl-utils-5.26.3-419.el8.noarch.rpm | Linux |
| Integer Overflow or Wraparound Vulnerability (CVE-2020-10878) | NCM |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-602673 | MacOS Catalina 10.15.7 - Auto Reboot |
| PATCH-602674 | macOS Catalina 10.15.7 Combo Update - Auto Reboot |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234