Search for packages
| purl | pkg:deb/debian/perl@5.32.1-4%2Bdeb11u3?distro=trixie |
| Next non-vulnerable version | 5.32.1-4+deb11u4 |
| Latest non-vulnerable version | 5.40.1-7 |
| Risk | 3.6 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-r3y5-1dk2-pyfc
Aliases: CVE-2025-40909 |
perl: Perl threads have a working directory race condition where file operations may target unintended paths |
Affected by 1 other vulnerability. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-vgg2-vymx-b3fe
Aliases: CVE-2023-31486 |
Multiple vulnerabilities have been discovered in Perl, the worst of which can lead to arbitrary code execution. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-18hx-q4kf-dfb9 | The Safe module for Perl does not properly restrict code, allowing a remote attacker to execute arbitrary Perl code outside of a restricted compartment. |
CVE-2010-1168
|
| VCID-1dqw-mq1b-6kdz | An off-by-one error in Compress::Raw::Zlib and Compress::Raw::Bzip2 might lead to a Denial of Service. |
CVE-2009-1391
|
| VCID-1npw-fmvb-xfbk | security flaw |
CVE-2003-0615
|
| VCID-2s9j-mc4f-yuga | security flaw |
CVE-2004-0452
|
| VCID-2tv2-wp3x-xbbu | Multiple vulnerabilities have been found in Perl, the worst of which could allow remote attackers to execute arbitrary code. |
CVE-2015-8853
|
| VCID-3jvk-6vnf-gbaa | security flaw |
CVE-2005-0155
|
| VCID-4ab2-z2zk-q7fw | Multiple packages suffer from RUNPATH issues that may allow users in the "portage" group to escalate privileges. |
CVE-2005-4278
|
| VCID-4ntu-mvzh-eqh4 | Multiple vulnerabilities were found in Bugzilla, the worst of which leading to privilege escalation. |
CVE-2010-2761
|
| VCID-55tr-re4z-9kb2 | perl-Module-Metadata: incorrectly documents that it does not execute unsafe code |
CVE-2013-1437
|
| VCID-6crh-5jp9-c3f8 | Multiple vulnerabilities have been found in Perl, the worst of which could allow remote attackers to execute arbitrary code. |
CVE-2016-6185
|
| VCID-7y94-9sak-zfd7 | perl-Data-Dumper: deep recursion stack overflow |
CVE-2014-4330
|
| VCID-8k36-z9xy-3bd4 | Perl in Apple Mac OS X Server 10.3.9 does not properly drop privileges when using the "$<" variable to set uid, which allows attackers to gain privileges. |
CVE-2005-4217
|
| VCID-93kg-31zq-1qcr | A vulnerability in Perl allows a remote attacker to cause Denial of Service. |
CVE-2013-7422
|
| VCID-9ff8-ad5m-dbfb | security update |
CVE-2017-12837
|
| VCID-9mf7-9w18-77ee | Perl: Compress::Raw::Zlib: zlib: Perl: Multiple vulnerabilities due to an outdated vendored zlib library |
CVE-2026-4176
|
| VCID-9n1u-99cs-pyc3 | perl: assertion failure with certain regular expressions |
CVE-2010-4777
|
| VCID-9qbu-f31k-1fbk | perl: regexp matcher crash on invalid UTF-8 characters |
CVE-2009-3626
|
| VCID-9s8b-4xp8-43fn | Multiple vulnerabilities have been found in Perl, the worst of which could allow remote attackers to execute arbitrary code. |
CVE-2015-8607
|
| VCID-9uk5-5wp6-8kbv | Multiple vulnerabilities have been found in Perl, the worst of which could allow remote attackers to execute arbitrary code. |
CVE-2016-1238
|
| VCID-9ydr-a92r-judb | Multiple vulnerabilities have been found in the Perl Locale-Maketext module, allowing remote attackers to inject and execute arbitrary Perl code. |
CVE-2012-6329
|
| VCID-a1cw-hg74-v3c3 | Multiple vulnerabilities have been found in Perl, the worst of which could result in a Denial of Service condition. |
CVE-2020-10878
|
| VCID-ad6h-59wf-pbe5 | security flaw |
CVE-2002-1323
|
| VCID-av9c-xkux-qqab | perl-CGI-Simple: - hardcoded MIME boundary value for multipart content, CVE-2010-4410 - CRLF injection allowing HTTP response splitting |
CVE-2010-4410
|
| VCID-bmvq-9v68-zue4 | Multiple vulnerabilities were found in Bugzilla, the worst of which leading to privilege escalation. |
CVE-2010-4411
|
| VCID-c8d4-fyq4-3bdr | perl: out-of-bounds read and buffer overflow in functions VDir::MapPathA and VDir::MapPathW via a crafted drive letter or a pInName argument |
CVE-2015-8608
|
| VCID-c97p-b1zs-abe2 | Multiple vulnerabilities have been found in Perl and Locale::Maketext Perl module, the worst of which could allow a context-dependent attacker to execute arbitrary code. |
CVE-2011-2728
|
| VCID-d6gj-bvhz-rke2 | Multiple vulnerabilities were found in Perl, the worst of which could allow a local attacker to cause a Denial of Service condition. |
CVE-2011-1487
|
| VCID-drgw-n9p3-ryhd | A vulnerability in module File::Path for Perl allows local attackers to set arbitrary mode values on arbitrary files bypassing security restrictions. |
CVE-2017-6512
|
| VCID-duky-tw31-xuhe | perl: Perl for Windows binary hijacking vulnerability |
CVE-2023-47039
|
| VCID-e2g8-fru4-qfah | security flaw |
CVE-2004-0976
|
| VCID-efz8-y2qe-dkgj | Multiple vulnerabilities have been found in Perl, the worst of which could result in the arbitrary execution of code. |
CVE-2018-18311
|
| VCID-fcg3-35wj-1bbm | Multiple vulnerabilities have been found in Perl, the worst of which could result in the arbitrary execution of code. |
CVE-2018-18314
|
| VCID-fe7j-gxfx-1ufh | Stack-based buffer overflow in the CPerlHost::Add method in win32/perlhost.h in Perl before 5.24.3-RC1 and 5.26.x before 5.26.1-RC1 on Windows allows attackers to execute arbitrary code via a long environment variable. |
CVE-2017-12814
|
| VCID-gu1q-p8hw-quaj | Perl 5.8.1 on Fedora Core does not properly initialize the random number generator when forking, which makes it easier for attackers to predict random numbers. |
CVE-2003-0900
|
| VCID-h5vb-1c3n-gfbf | A buffer overflow in the Regular Expression engine in Perl possibly allows for the execution of arbitrary code. |
CVE-2007-5116
|
| VCID-h9m2-nyf7-17et | Multiple vulnerabilities have been found in Perl, the worst of which could result in the arbitrary execution of code. |
CVE-2018-6798
|
| VCID-hf7c-n8hb-q7dk | Multiple vulnerabilities have been discovered in Perl, the worst of which can lead to arbitrary code execution. |
CVE-2021-36770
|
| VCID-hyw2-vhpu-uya2 | security update |
CVE-2017-12883
|
| VCID-kc81-vy1w-gfdz | Multiple vulnerabilities have been found in Perl, the worst of which could result in the arbitrary execution of code. |
CVE-2018-6797
|
| VCID-kcy1-7ny3-sufc | perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS |
CVE-2023-31484
|
| VCID-kw8t-k4h2-cbcd | Multiple vulnerabilities have been found in Perl, the worst of which could result in a Denial of Service condition. |
CVE-2020-12723
|
| VCID-mkx9-z5rw-nkaj | leaks file existance information |
CVE-2003-0618
|
| VCID-mmaj-ak8p-efcm | Buffer overflow in the win32_stat function for (1) ActiveState's ActivePerl and (2) Larry Wall's Perl before 5.8.3 allows local or remote attackers to execute arbitrary commands via filenames that end in a backslash character. |
CVE-2004-0377
|
| VCID-n9qr-vq9n-qfge | perl-CGI: Newline injection due to improper CRLF escaping in Set-Cookie and P3P headers |
CVE-2012-5526
|
| VCID-nhce-b7j4-huaa | A double free vulnerability was discovered in Perl, possibly resulting in the execution of arbitrary code and a Denial of Service. |
CVE-2008-1927
|
| VCID-ns9e-t4zg-r3b6 | Multiple vulnerabilities have been found in Perl, the worst of which could result in a Denial of Service condition. |
CVE-2020-10543
|
| VCID-nxx4-txsk-6ucr | perl: stack-based crash in S_find_uninit_var() |
CVE-2022-48522
|
| VCID-p9gy-p1x1-ayfw | Multiple vulnerabilities have been found in Perl, the worst of which could result in the arbitrary execution of code. |
CVE-2018-18313
|
| VCID-pwt9-n1n8-sfew | Multiple vulnerabilities were found in Perl, the worst of which could allow a local attacker to cause a Denial of Service condition. |
CVE-2010-1158
|
| VCID-r8f2-wuqh-mkgz | A fix is available for Perl to mitigate the effects of format string programming errors, that could otherwise be exploited to execute arbitrary code. |
CVE-2005-3962
|
| VCID-sswe-nmce-sufg | A directory traversal vulnerability has been discovered in Archive::Tar. |
CVE-2007-4829
|
| VCID-tkh2-ctmb-q7fm | security update |
CVE-2018-12015
|
| VCID-twbf-e9pe-gfe5 | Multiple vulnerabilities have been found in Perl and Locale::Maketext Perl module, the worst of which could allow a context-dependent attacker to execute arbitrary code. |
CVE-2011-2939
|
| VCID-u777-9eyy-xqeu | Multiple vulnerabilities were found in Perl, the worst of which could allow a local attacker to cause a Denial of Service condition. |
CVE-2008-5302
|
| VCID-ubfp-dagm-tua3 | Multiple vulnerabilities have been found in Perl and Locale::Maketext Perl module, the worst of which could allow a context-dependent attacker to execute arbitrary code. |
CVE-2013-1667
|
| VCID-uk68-gpxn-d3gd | Multiple vulnerabilities were found in Perl, the worst of which could allow a local attacker to cause a Denial of Service condition. |
CVE-2008-5303
|
| VCID-usg4-tvym-wqe4 | security flaw |
CVE-2005-0448
|
| VCID-vbkg-c84e-g3dx | Multiple vulnerabilities have been found in Perl, the worst of which could result in the arbitrary execution of code. |
CVE-2018-18312
|
| VCID-vdc9-td4x-qkek | perl-CPAN: Bypass of verification of signatures in CHECKSUMS files |
CVE-2020-16156
|
| VCID-vrvd-7r3k-67cw | A vulnerability has been found in the Digest-Base Perl module, allowing remote attackers to execute arbitrary code. |
CVE-2011-3597
|
| VCID-vzbz-ntbh-4qaq | security flaw |
CVE-2005-0156
|
| VCID-wuxz-f3zm-j7ey | Multiple vulnerabilities have been found in Perl and Locale::Maketext Perl module, the worst of which could allow a context-dependent attacker to execute arbitrary code. |
CVE-2012-5195
|
| VCID-wxxs-j561-8kf4 | Multiple vulnerabilities were found in Perl, the worst of which could allow a local attacker to cause a Denial of Service condition. |
CVE-2011-0761
|
| VCID-x5rc-hajz-p7gp | perl: Perl 5.34, 5.36, 5.38 and 5.40 are vulnerable to a heap buffer overflow when transliterating non-ASCII bytes |
CVE-2024-56406
|
| VCID-xm1g-4mbg-cud5 | Multiple vulnerabilities have been found in Perl, the worst of which could result in the arbitrary execution of code. |
CVE-2018-6913
|
| VCID-xrsg-uv6h-zubj | Multiple vulnerabilities have been found in Perl, the worst of which could allow remote attackers to execute arbitrary code. |
CVE-2016-2381
|
| VCID-xzhq-u9n2-c3gn | Multiple vulnerabilities in the PostgreSQL server and client allow remote attacker to conduct several attacks, including the execution of arbitrary code and Denial of Service. |
CVE-2010-1447
|
| VCID-ysjv-efv9-xke8 | Multiple vulnerabilities have been discovered in Perl, the worst of which can lead to arbitrary code execution. |
CVE-2023-47038
|
| VCID-z7zt-kuc5-qkcd | perl: insecure use of chmod in rmtree |
CVE-2008-2827
|
| VCID-zzy2-j557-s7ft | security flaw |
CVE-2002-0703
|