#VU32068 Buffer overflow in Perl


Published: 2017-09-19 | Updated: 2020-07-28

Vulnerability identifier: #VU32068

Vulnerability risk: High

CVSSv3.1: 7.9 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2017-12883

CWE-ID: CWE-119

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Perl
Universal components / Libraries / Scripting languages

Vendor: Perl

Description

The vulnerability allows a remote non-authenticated attacker to #BASIC_IMPACT#.

Buffer overflow in the S_grok_bslash_N function in regcomp.c in Perl 5 before 5.24.3-RC1 and 5.26.x before 5.26.1-RC1 allows remote attackers to disclose sensitive information or cause a denial of service (application crash) via a crafted regular expression with an invalid 'N{U+...}' escape.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Perl: 0.5 - 0.95, 1.45, 2.5.0 - 2.5.1, 2.6.5, 2.8.5, 2.10.5, 2.11.5, 2.15.0 - 2.15.1, 5.4 - 5.4.5, 5.5 - 5.5.3, 5.6 - 5.6.2, 5.8.0 - 5.8.10, 5.9.2, 5.10 - 5.10.1, 5.11.0 - 5.11.5, 5.12.0 - 5.12.3, 5.13.0 - 5.13.11, 5.14.0 - 5.14.1, 5.15, 5.16, 5.18.4, 5.22.2-1, 5.23.0 - 5.23.9, 5.24.0 - 5.24.1, 5.26.0 - 5.26.2, 5.28.0 - 5.28.1, 5.30.0 - 5.30.3

External links
http://mirror.cucumberlinux.com/cucumber/cucumber-1.0/source/lang-base/perl/patches/CVE-2017-12883.patch
http://www.debian.org/security/2017/dsa-3982
http://www.securityfocus.com/bid/100852
http://bugzilla.redhat.com/show_bug.cgi?id=1492093
http://perl5.git.perl.org/perl.git/commitdiff/2be4edede4ae226e2eebd4eff28cedd2041f300f#patch1
http://perl5.git.perl.org/perl.git/log/refs/tags/v5.24.3-RC1
http://perl5.git.perl.org/perl.git/log/refs/tags/v5.26.1-RC1
http://rt.perl.org/Public/Bug/Display.html?id=131598
http://security.netapp.com/advisory/ntap-20180426-0001/
http://www.oracle.com/security-alerts/cpujul2020.html

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Buffer overflow in perl (Alpine package)
Buffer overflow in Perl