Out-of-bounds write in perl (Alpine package)

1) Out-of-bounds write

EUVDB-ID: #VU16184

Risk: High

CVSSv3.1: 9 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C]

CVE-ID: CVE-2018-18312

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

Description

The vulnerability allows a remote attacker to cause DoS condition or execute arbitrary code on the target system.

The vulnerability exists due to heap-based buffer overflow write during compilation. A remote unauthenticated attacker can supply specially crafted regular expression, trigger memory corruption and cause the service to crash or execute arbitrary code with elevated privileges.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

perl (Alpine package): 5.24.4-r1

External links

http://git.alpinelinux.org/aports/commit/?id=2347c5642490c5f7dc79c2205fff672b7bf5a3f6
http://git.alpinelinux.org/aports/commit/?id=2db22e01ffdcff6cb673b0f5660cb911cff79bc1
http://git.alpinelinux.org/aports/commit/?id=d5907c68b2341579983e3fc9a25ac4b67162c994
http://git.alpinelinux.org/aports/commit/?id=f4e478f351ceedb178ec76b3b5ba2b2defdf99c8
http://git.alpinelinux.org/aports/commit/?id=0bae63fd8d47db4b5bf4e1407c139f804fa62f4f
http://git.alpinelinux.org/aports/commit/?id=13074bff64787b9251ec396b8ac6ecd18718d2a0
http://git.alpinelinux.org/aports/commit/?id=17a345542d7049381a2bafa85893bda2cfc61358
http://git.alpinelinux.org/aports/commit/?id=d64c1df53210ad5f3d6666da967b2628cf0eb172

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.