Search for packages
| purl | pkg:deb/debian/perl@5.32.1-4%2Bdeb11u3 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-8v62-79q2-aaaj
Aliases: CVE-2020-16156 |
CPAN 2.28 allows Signature Verification Bypass. |
Affected by 0 other vulnerabilities. Affected by 3 other vulnerabilities. Affected by 2 other vulnerabilities. |
|
VCID-m8p9-8hjz-aaae
Aliases: CVE-2023-31484 |
CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS. |
Affected by 3 other vulnerabilities. Affected by 2 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-wp6a-qnkv-aaaf
Aliases: CVE-2023-31486 |
HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS configuration where users must opt in to verify certificates. |
Affected by 2 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-8v62-79q2-aaaj | CPAN 2.28 allows Signature Verification Bypass. |
CVE-2020-16156
|
| VCID-j9vg-x3e1-aaah | Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow. |
CVE-2020-10543
|
| VCID-m8p9-8hjz-aaae | CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS. |
CVE-2023-31484
|
| VCID-ns93-adpj-aaap | regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls. |
CVE-2020-12723
|
| VCID-r72w-k4p9-aaag | A vulnerability was found in perl 5.30.0 through 5.38.0. This issue occurs when a crafted regular expression is compiled by perl, which can allow an attacker controlled byte buffer overflow in a heap allocated buffer. |
CVE-2023-47038
|
| VCID-sk12-259u-aaaf | Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection. |
CVE-2020-10878
|
| VCID-wp6a-qnkv-aaaf | HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS configuration where users must opt in to verify certificates. |
CVE-2023-31486
|
| VCID-x6nw-5wtg-aaaa | Encode.pm, as distributed in Perl through 5.34.0, allows local users to gain privileges via a Trojan horse Encode::ConfigLocal library (in the current working directory) that preempts dynamic module loading. Exploitation requires an unusual configuration, and certain 2021 versions of Encode.pm (3.05 through 3.11). This issue occurs because the || operator evaluates @INC in a scalar context, and thus @INC has only an integer value. |
CVE-2021-36770
|
| VCID-z5fx-r63m-aaaf | In Perl 5.34.0, function S_find_uninit_var in sv.c has a stack-based crash that can lead to remote code execution or local privilege escalation. |
CVE-2022-48522
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T21:55:27.983098+00:00 | Debian Importer | Fixing | VCID-m8p9-8hjz-aaae | https://security-tracker.debian.org/tracker/data/json | 36.1.3 |
| 2025-06-21T07:57:51.031508+00:00 | Debian Importer | Affected by | VCID-m8p9-8hjz-aaae | https://security-tracker.debian.org/tracker/data/json | 36.1.3 |
| 2025-06-21T05:48:52.196744+00:00 | Debian Importer | Fixing | VCID-z5fx-r63m-aaaf | None | 36.1.3 |
| 2025-06-21T05:23:16.469839+00:00 | Debian Oval Importer | Fixing | VCID-sk12-259u-aaaf | None | 36.1.3 |
| 2025-06-21T04:54:43.612885+00:00 | Debian Oval Importer | Fixing | VCID-x6nw-5wtg-aaaa | None | 36.1.3 |
| 2025-06-21T03:42:32.753692+00:00 | Debian Importer | Affected by | VCID-8v62-79q2-aaaj | https://security-tracker.debian.org/tracker/data/json | 36.1.3 |
| 2025-06-21T02:45:48.829798+00:00 | Debian Importer | Fixing | VCID-8v62-79q2-aaaj | None | 36.1.3 |
| 2025-06-21T01:56:43.831630+00:00 | Debian Oval Importer | Fixing | VCID-j9vg-x3e1-aaah | None | 36.1.3 |
| 2025-06-21T01:42:07.842410+00:00 | Debian Oval Importer | Fixing | VCID-ns93-adpj-aaap | None | 36.1.3 |
| 2025-06-20T23:47:01.261363+00:00 | Debian Importer | Affected by | VCID-wp6a-qnkv-aaaf | https://security-tracker.debian.org/tracker/data/json | 36.1.3 |
| 2025-06-20T22:52:10.173959+00:00 | Debian Importer | Fixing | VCID-8v62-79q2-aaaj | https://security-tracker.debian.org/tracker/data/json | 36.1.3 |
| 2025-06-07T23:01:00.383724+00:00 | Debian Oval Importer | Fixing | VCID-sk12-259u-aaaf | None | 36.1.0 |
| 2025-06-07T22:32:01.341295+00:00 | Debian Oval Importer | Fixing | VCID-x6nw-5wtg-aaaa | None | 36.1.0 |
| 2025-06-07T19:20:11.111862+00:00 | Debian Oval Importer | Fixing | VCID-j9vg-x3e1-aaah | None | 36.1.0 |
| 2025-06-07T19:05:16.527432+00:00 | Debian Oval Importer | Fixing | VCID-ns93-adpj-aaap | None | 36.1.0 |
| 2025-04-13T02:13:32.695608+00:00 | Debian Oval Importer | Affected by | VCID-m8p9-8hjz-aaae | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-13T02:12:50.341802+00:00 | Debian Oval Importer | Affected by | VCID-8v62-79q2-aaaj | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T22:58:05.477215+00:00 | Debian Oval Importer | Fixing | VCID-r72w-k4p9-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T22:02:39.230642+00:00 | Debian Oval Importer | Fixing | VCID-j9vg-x3e1-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T21:53:08.173034+00:00 | Debian Oval Importer | Fixing | VCID-ns93-adpj-aaap | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T20:26:40.948818+00:00 | Debian Oval Importer | Fixing | VCID-x6nw-5wtg-aaaa | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T19:10:12.190326+00:00 | Debian Oval Importer | Fixing | VCID-sk12-259u-aaaf | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-07T21:33:01.224774+00:00 | Debian Oval Importer | Fixing | VCID-sk12-259u-aaaf | None | 36.0.0 |
| 2025-04-07T21:03:40.173339+00:00 | Debian Oval Importer | Fixing | VCID-x6nw-5wtg-aaaa | None | 36.0.0 |
| 2025-04-07T17:58:00.246692+00:00 | Debian Oval Importer | Fixing | VCID-j9vg-x3e1-aaah | None | 36.0.0 |
| 2025-04-07T17:43:08.704018+00:00 | Debian Oval Importer | Fixing | VCID-ns93-adpj-aaap | None | 36.0.0 |
| 2025-04-07T04:00:58.266948+00:00 | Debian Importer | Fixing | VCID-wp6a-qnkv-aaaf | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-04-05T17:55:15.107701+00:00 | Debian Importer | Fixing | VCID-m8p9-8hjz-aaae | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-04-05T05:14:23.252225+00:00 | Debian Importer | Affected by | VCID-m8p9-8hjz-aaae | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-04-05T03:03:40.507446+00:00 | Debian Importer | Fixing | VCID-z5fx-r63m-aaaf | None | 36.0.0 |
| 2025-04-04T06:31:11.152414+00:00 | Debian Importer | Affected by | VCID-8v62-79q2-aaaj | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-04-04T05:32:30.332223+00:00 | Debian Importer | Fixing | VCID-8v62-79q2-aaaj | None | 36.0.0 |
| 2025-04-04T02:28:25.217101+00:00 | Debian Importer | Affected by | VCID-wp6a-qnkv-aaaf | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-04-04T01:31:08.691616+00:00 | Debian Importer | Fixing | VCID-8v62-79q2-aaaj | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-02-21T11:21:48.671023+00:00 | Debian Importer | Fixing | VCID-wp6a-qnkv-aaaf | https://security-tracker.debian.org/tracker/data/json | 35.1.0 |
| 2025-02-21T11:21:41.807088+00:00 | Debian Importer | Affected by | VCID-wp6a-qnkv-aaaf | https://security-tracker.debian.org/tracker/data/json | 35.1.0 |
| 2025-02-21T11:21:30.754253+00:00 | Debian Importer | Affected by | VCID-m8p9-8hjz-aaae | https://security-tracker.debian.org/tracker/data/json | 35.1.0 |
| 2025-02-21T11:21:28.676901+00:00 | Debian Importer | Fixing | VCID-m8p9-8hjz-aaae | https://security-tracker.debian.org/tracker/data/json | 35.1.0 |
| 2025-02-21T05:20:16.575585+00:00 | Debian Importer | Fixing | VCID-z5fx-r63m-aaaf | None | 35.1.0 |
| 2025-02-19T14:04:40.710815+00:00 | Debian Importer | Fixing | VCID-8v62-79q2-aaaj | https://security-tracker.debian.org/tracker/data/json | 35.1.0 |
| 2025-02-19T14:04:35.041493+00:00 | Debian Importer | Fixing | VCID-8v62-79q2-aaaj | None | 35.1.0 |
| 2025-02-19T14:04:32.182989+00:00 | Debian Importer | Affected by | VCID-8v62-79q2-aaaj | https://security-tracker.debian.org/tracker/data/json | 35.1.0 |
| 2024-11-24T00:43:25.686881+00:00 | Debian Importer | Affected by | VCID-wp6a-qnkv-aaaf | https://security-tracker.debian.org/tracker/data/json | 35.0.0 |
| 2024-11-24T00:43:22.914772+00:00 | Debian Importer | Affected by | VCID-m8p9-8hjz-aaae | https://security-tracker.debian.org/tracker/data/json | 35.0.0 |
| 2024-11-23T19:23:21.676197+00:00 | Debian Importer | Fixing | VCID-z5fx-r63m-aaaf | None | 35.0.0 |
| 2024-11-22T11:16:07.467317+00:00 | Debian Importer | Affected by | VCID-8v62-79q2-aaaj | https://security-tracker.debian.org/tracker/data/json | 35.0.0 |
| 2024-11-20T09:50:41.649334+00:00 | Debian Importer | Affected by | VCID-8v62-79q2-aaaj | https://security-tracker.debian.org/tracker/data/json | 34.3.2 |
| 2024-10-10T22:31:01.171652+00:00 | Debian Importer | Affected by | VCID-wp6a-qnkv-aaaf | https://security-tracker.debian.org/tracker/data/json | 34.0.2 |
| 2024-10-10T22:30:59.742224+00:00 | Debian Importer | Affected by | VCID-m8p9-8hjz-aaae | https://security-tracker.debian.org/tracker/data/json | 34.0.2 |
| 2024-10-10T17:22:21.278074+00:00 | Debian Importer | Fixing | VCID-z5fx-r63m-aaaf | None | 34.0.2 |
| 2024-10-09T10:27:47.824773+00:00 | Debian Importer | Affected by | VCID-8v62-79q2-aaaj | https://security-tracker.debian.org/tracker/data/json | 34.0.2 |
| 2024-09-20T03:12:50.219384+00:00 | Debian Importer | Affected by | VCID-wp6a-qnkv-aaaf | https://security-tracker.debian.org/tracker/data/json | 34.0.1 |
| 2024-09-20T03:12:48.846353+00:00 | Debian Importer | Affected by | VCID-m8p9-8hjz-aaae | https://security-tracker.debian.org/tracker/data/json | 34.0.1 |
| 2024-09-19T22:50:41.628229+00:00 | Debian Importer | Fixing | VCID-z5fx-r63m-aaaf | None | 34.0.1 |
| 2024-09-18T20:30:54.851693+00:00 | Debian Importer | Affected by | VCID-8v62-79q2-aaaj | https://security-tracker.debian.org/tracker/data/json | 34.0.1 |
| 2024-04-26T03:11:41.960146+00:00 | Debian Importer | Fixing | VCID-wp6a-qnkv-aaaf | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc4 |
| 2024-04-26T03:11:40.088185+00:00 | Debian Importer | Affected by | VCID-wp6a-qnkv-aaaf | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc4 |
| 2024-04-26T03:11:37.158696+00:00 | Debian Importer | Affected by | VCID-m8p9-8hjz-aaae | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc4 |
| 2024-04-26T03:11:34.333082+00:00 | Debian Importer | Fixing | VCID-m8p9-8hjz-aaae | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc4 |
| 2024-04-25T22:12:57.044892+00:00 | Debian Importer | Fixing | VCID-z5fx-r63m-aaaf | None | 34.0.0rc4 |
| 2024-04-24T18:25:43.736281+00:00 | Debian Importer | Fixing | VCID-8v62-79q2-aaaj | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc4 |
| 2024-04-24T18:25:38.916699+00:00 | Debian Importer | Fixing | VCID-8v62-79q2-aaaj | None | 34.0.0rc4 |
| 2024-04-24T18:25:38.104739+00:00 | Debian Importer | Affected by | VCID-8v62-79q2-aaaj | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc4 |
| 2024-01-12T08:11:31.578748+00:00 | Debian Importer | Fixing | VCID-z5fx-r63m-aaaf | None | 34.0.0rc2 |
| 2024-01-10T19:54:56.564781+00:00 | Debian Importer | Fixing | VCID-8v62-79q2-aaaj | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc2 |
| 2024-01-10T19:54:51.392185+00:00 | Debian Importer | Fixing | VCID-8v62-79q2-aaaj | None | 34.0.0rc2 |
| 2024-01-05T06:04:06.431005+00:00 | Debian Importer | Fixing | VCID-z5fx-r63m-aaaf | None | 34.0.0rc1 |
| 2024-01-04T09:19:32.634162+00:00 | Debian Importer | Fixing | VCID-8v62-79q2-aaaj | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc1 |
| 2024-01-04T09:19:27.498363+00:00 | Debian Importer | Fixing | VCID-8v62-79q2-aaaj | None | 34.0.0rc1 |