Alerts This Week
Warning Icon 1 483
Alerts This Week
Warning Icon 1 483

Ubuntu 12.04 ESM USN-3834-2 Critical Perl Denial of Service Advisory

ubuntu
Calendar Grey December 3, 2018
Dist Ubuntu Esm H88
=========================================================================Ubuntu Security Notice USN-
Several security issues were fixed in Perl.

Summary

Several security issues were fixed in Perl.

Software Description:

- perl: Practical Extraction and Report Language

Details:

USN-3834-1 fixed a vulnerability in perl. This update provides

the corresponding update for Ubuntu 12.04 ESM.

Original advisory details:

 Jayakrishna Menon discovered that Perl incorrectly handled

 Perl_my_setenv. An attacker could use this issue to cause Perl to

 crash, resulting in a denial of service, or possibly execute arbitrary

 code. (CVE-2018-18311)

 Eiichi Tsukata discovered that Perl incorrectly handled certain

 regular expressions. An attacker could use this issue to cause Perl to

 crash, resulting in a denial of service. (CVE-2018-18313)

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 12.04 ESM:
  perl                            5.14.2-6ubuntu2.9

In general, a standard system update will make all the necessary
changes.

References

  https://ubuntu.com/security/notices/USN-3834-2

  https://ubuntu.com/security/notices/USN-3834-1

  CVE-2018-18311, CVE-2018-18313

Severity
critical
Lowest
Low
Medium
High
Critical

December 03, 2018

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here