Executive Summary

Informations
NameCVE-2018-18311First vendor Publication2018-12-07
VendorCveLast vendor Modification2019-04-26

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score7.5Attack RangeNetwork
Cvss Impact Score6.4Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid write operations.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18311

CWE : Common Weakness Enumeration

%idName
100 %CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer

CPE : Common Platform Enumeration

TypeDescriptionCount
Application1
Application1
Application1
Application1
Application191
Application1
Os117
Os5
Os2
Os1
Os5
Os1
Os1
Os1
Os1
Os1
Os1

Nessus® Vulnerability Scanner

DateDescription
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-9dbe983805.nasl - Type : ACT_GATHER_INFO
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-ca03363d57.nasl - Type : ACT_GATHER_INFO
2018-12-01Name : The remote Debian host is missing a security update.
File : debian_DLA-1601.nasl - Type : ACT_GATHER_INFO
2018-11-30Name : The remote Debian host is missing a security-related update.
File : debian_DSA-4347.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/106145
BUGTRAQ https://seclists.org/bugtraq/2019/Mar/42
CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=1646730
https://github.com/Perl/perl5/commit/34716e2a6ee2af96078d62b065b7785c001194be
https://kc.mcafee.com/corporate/index?page=content&id=SB10278
https://metacpan.org/changes/release/SHAY/perl-5.26.3
https://metacpan.org/changes/release/SHAY/perl-5.28.1
https://rt.perl.org/Ticket/Display.html?id=133204
https://security.netapp.com/advisory/ntap-20190221-0003/
https://support.apple.com/kb/HT209600
DEBIAN https://www.debian.org/security/2018/dsa-4347
FEDORA https://lists.fedoraproject.org/archives/list/package-announce@lists.fedorapr...
FULLDISC http://seclists.org/fulldisclosure/2019/Mar/49
MLIST https://lists.debian.org/debian-lts-announce/2018/11/msg00039.html
REDHAT https://access.redhat.com/errata/RHBA-2019:0327
https://access.redhat.com/errata/RHSA-2019:0001
https://access.redhat.com/errata/RHSA-2019:0010
https://access.redhat.com/errata/RHSA-2019:0109
SECTRACK http://www.securitytracker.com/id/1042181
UBUNTU https://usn.ubuntu.com/3834-1/
https://usn.ubuntu.com/3834-2/

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
DateInformations
2019-04-26 21:19:40
  • Multiple Updates
2019-04-24 13:19:11
  • Multiple Updates
2019-04-22 21:19:16
  • Multiple Updates
2019-04-16 21:19:07
  • Multiple Updates
2019-04-10 13:19:11
  • Multiple Updates
2019-03-27 21:19:34
  • Multiple Updates
2019-03-27 00:19:07
  • Multiple Updates
2019-03-26 17:19:08
  • Multiple Updates
2019-03-26 09:19:20
  • Multiple Updates
2019-02-26 21:19:37
  • Multiple Updates
2019-02-23 09:19:19
  • Multiple Updates
2019-01-22 17:19:12
  • Multiple Updates
2019-01-03 17:19:00
  • Multiple Updates
2018-12-31 17:19:06
  • Multiple Updates
2018-12-10 17:19:03
  • Multiple Updates
2018-12-08 17:19:05
  • Multiple Updates
2018-12-08 00:19:10
  • First insertion