Alpaquita Linux
Security Advisory

CVE-2020-10543

Published: August 31, 2023Last modified: August 31, 2023

Description

Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow.

Severity score breakdown

ParameterValue
Base score8.2
Attack VectorNETWORK
Attack complexityLOW
Privileges requiredNONE
User interactionNONE
ScopeUNCHANGED
ConfidentialityNONE
Integrity impactLOW
Availability impactHIGH
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

Status

ProductReleasePackageStatus
Alpaquita Linux23 LTSperlNot affected (5.36.0-r2)
StreamperlNot affected (5.38.0-r0)

References

ON THIS PAGE