7.5 - USN-1770-1

Executive Summary

Summary
Title	Perl vulnerability

Informations
Name	USN-1770-1	First vendor Publication	2013-03-19
Vendor	Ubuntu	Last vendor Modification	2013-03-19
Severity (Vendor)	N/A	Revision	N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score	7.5	Attack Range	Network
Cvss Impact Score	6.4	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 12.10 - Ubuntu 12.04 LTS - Ubuntu 11.10 - Ubuntu 10.04 LTS - Ubuntu 8.04 LTS

Summary:

Perl could be made to stop responding if it received specially crafted input.

Software Description: - perl: Practical Extraction and Report Language

Details:

Yves Orton discovered that Perl incorrectly handled hashing when using user-provided hash keys. An attacker could use this flaw to perform a denial of service attack against software written in Perl.

Update instructions:

The problem can be corrected by updating your system to the following package versions:

Ubuntu 12.10:
perl 5.14.2-13ubuntu0.2

Ubuntu 12.04 LTS:
perl 5.14.2-6ubuntu2.3

Ubuntu 11.10:
perl 5.12.4-4ubuntu0.2

Ubuntu 10.04 LTS:
perl 5.10.1-8ubuntu2.3

Ubuntu 8.04 LTS:
perl 5.8.8-12ubuntu0.8

In general, a standard system update will make all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-1770-1
CVE-2013-1667

Package Information:
https://launchpad.net/ubuntu/+source/perl/5.14.2-13ubuntu0.2
https://launchpad.net/ubuntu/+source/perl/5.14.2-6ubuntu2.3
https://launchpad.net/ubuntu/+source/perl/5.12.4-4ubuntu0.2
https://launchpad.net/ubuntu/+source/perl/5.10.1-8ubuntu2.3
https://launchpad.net/ubuntu/+source/perl/5.8.8-12ubuntu0.8

Original Source

Url : http://www.ubuntu.com/usn/USN-1770-1

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-399	Resource Management Errors

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:18107

Oval ID:	oval:org.mitre.oval:def:18107
Title:	DSA-2641-1 perl - rehashing flaw
Description:	Yves Orton discovered a flaw in the rehashing code of Perl. This flaw could be exploited to carry out a denial of service attack against code that uses arbitrary user input as hash keys. Specifically an attacker could create a set of keys of a hash causing a denial of service via memory exhaustion.
Family:	unix	Class:	patch
Reference(s):	DSA-2641-1 CVE-2013-1667	Version:	7
Platform(s):	Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0	Product(s):	perl
Definition Synopsis:
Debian 6.0 is installed GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed AND Debian GNU/kFreeBSD is installed AND perl DPKG is earlier than 5.10.1-17squeeze6

Definition Id: oval:org.mitre.oval:def:18257

Oval ID:	oval:org.mitre.oval:def:18257
Title:	USN-1770-1 -- perl vulnerability
Description:	Perl could be made to stop responding if it received specially crafted input.
Family:	unix	Class:	patch
Reference(s):	USN-1770-1 CVE-2013-1667	Version:	7
Platform(s):	Ubuntu 12.10 Ubuntu 12.04 Ubuntu 11.10 Ubuntu 10.04 Ubuntu 8.04	Product(s):	perl
Definition Synopsis:
Release section Ubuntu 12.10 is installed AND perl DPKG is earlier than 5.14.2-13ubuntu0.2 AND Release section Ubuntu 12.04 is installed AND perl DPKG is earlier than 5.14.2-6ubuntu2.3 AND Release section Ubuntu 11.10 is installed AND perl DPKG is earlier than 5.12.4-4ubuntu0.2 AND Release section Ubuntu 10.04 is installed AND perl DPKG is earlier than 5.10.1-8ubuntu2.3 AND Release section Ubuntu 8.04 is installed AND perl DPKG is earlier than 5.8.8-12ubuntu0.8

Definition Id: oval:org.mitre.oval:def:18771

Oval ID:	oval:org.mitre.oval:def:18771
Title:	HP-UX running perl, Remote Denial of Service (DoS)
Description:	The rehash mechanism in Perl 5.8.2 through 5.16.x allows context-dependent attackers to cause a denial of service (memory consumption and crash) via a crafted hash key.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2013-1667	Version:	12
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
platforms HP Release B.11.11 AND HP Release B.11.23 AND HP-UX B.11.31 AND filesets tests Perl5-32.PERL-RUN version is less than E.5.8.8.M AND Perl5-64.PERL-RUN version is less than E.5.8.8.M

Definition Id: oval:org.mitre.oval:def:20923

Oval ID:	oval:org.mitre.oval:def:20923
Title:	DEPRECATED: Security vulnerabilities in Perl for AIX
Description:	The rehash mechanism in Perl 5.8.2 through 5.16.x allows context-dependent attackers to cause a denial of service (memory consumption and crash) via a crafted hash key.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2013-1667	Version:	3
Platform(s):	IBM AIX 6.1 IBM AIX 7.1	Product(s):
Definition Synopsis:
platforms IBM AIX 6.1 is installed AND IBM AIX 7.1 is installed AND filesets File Version Exists perl.rte greater than or equal 5.3.12 AND perl.rte less than or equal 5.8.8.0 OR File Version Exists perl.rte greater than or equal 6.1.7 AND perl.rte less than or equal 5.8.8.0 OR File Version Exists perl.rte greater than or equal 6.1.8 AND perl.rte less than or equal 5.8.8.0 OR File Version Exists perl.rte greater than or equal 7.1.1 AND perl.rte less than or equal 5.10.1.0 OR File Version Exists perl.rte greater than or equal 7.1.2 AND perl.rte less than or equal 5.10.1.0

Definition Id: oval:org.mitre.oval:def:20945

Oval ID:	oval:org.mitre.oval:def:20945
Title:	Security vulnerabilities in Perl for AIX
Description:	The rehash mechanism in Perl 5.8.2 through 5.16.x allows context-dependent attackers to cause a denial of service (memory consumption and crash) via a crafted hash key.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2013-1667	Version:	3
Platform(s):	IBM AIX 6.1 IBM AIX 7.1	Product(s):
Definition Synopsis:
platforms IBM AIX 6.1 is installed AND IBM AIX 7.1 is installed AND filesets File Version Exists perl.rte greater than or equal 5.8.8.0 AND perl.rte less than or equal 5.8.8.123 OR File Version Exists perl.rte greater than or equal 5.8.8.0 AND perl.rte less than or equal 5.8.8.122 OR File Version Exists perl.rte greater than or equal 5.8.8.0 AND perl.rte less than or equal 5.8.8.244 OR File Version Exists perl.rte greater than or equal 5.10.1.0 AND perl.rte less than or equal 5.10.1.100 OR File Version Exists perl.rte greater than or equal 5.10.1.0 AND perl.rte less than or equal 5.10.1.150

Definition Id: oval:org.mitre.oval:def:20994

Oval ID:	oval:org.mitre.oval:def:20994
Title:	RHSA-2013:0685: perl security update (Moderate)
Description:	The rehash mechanism in Perl 5.8.2 through 5.16.x allows context-dependent attackers to cause a denial of service (memory consumption and crash) via a crafted hash key.
Family:	unix	Class:	patch
Reference(s):	RHSA-2013:0685-01 CESA-2013:0685 CVE-2012-5195 CVE-2012-5526 CVE-2012-6329 CVE-2013-1667	Version:	59
Platform(s):	Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 6 CentOS Linux 5 CentOS Linux 6	Product(s):	perl
Definition Synopsis:
Operation system section Redhat 6 or Centos 6 release The operating system installed on the system is Red Hat Enterprise Linux 6 AND CentOS Linux 6.x Packages section perl-libs is earlier than 4:5.10.1-130.el6_4 AND perl-suidperl is earlier than 4:5.10.1-130.el6_4 AND perl-core is earlier than 0:5.10.1-130.el6_4 AND perl-Package-Constants is earlier than 1:0.02-130.el6_4 AND perl-ExtUtils-CBuilder is earlier than 1:0.27-130.el6_4 AND perl-IO-Compress-Base is earlier than 0:2.020-130.el6_4 AND perl-Time-HiRes is earlier than 4:1.9721-130.el6_4 AND perl-CGI is earlier than 0:3.51-130.el6_4 AND perl-Log-Message-Simple is earlier than 0:0.04-130.el6_4 AND perl-Archive-Extract is earlier than 1:0.38-130.el6_4 AND perl-version is earlier than 3:0.77-130.el6_4 AND perl-ExtUtils-ParseXS is earlier than 1:2.2003.0-130.el6_4 AND perl-Test-Simple is earlier than 0:0.92-130.el6_4 AND perl-Compress-Raw-Zlib is earlier than 1:2.020-130.el6_4 AND perl-Module-Loaded is earlier than 1:0.02-130.el6_4 AND perl-IO-Compress-Bzip2 is earlier than 0:2.020-130.el6_4 AND perl-Module-Pluggable is earlier than 1:3.90-130.el6_4 AND perl-Test-Harness is earlier than 0:3.17-130.el6_4 AND perl-Pod-Escapes is earlier than 1:1.04-130.el6_4 AND perl-parent is earlier than 1:0.221-130.el6_4 AND perl-IO-Compress-Zlib is earlier than 0:2.020-130.el6_4 AND perl-CPANPLUS is earlier than 0:0.88-130.el6_4 AND perl-Pod-Simple is earlier than 1:3.13-130.el6_4 AND perl-Module-Load is earlier than 1:0.16-130.el6_4 AND perl-File-Fetch is earlier than 0:0.26-130.el6_4 AND perl-Module-CoreList is earlier than 0:2.18-130.el6_4 AND perl-IO-Zlib is earlier than 1:1.09-130.el6_4 AND perl-Params-Check is earlier than 1:0.26-130.el6_4 AND perl-Compress-Zlib is earlier than 0:2.020-130.el6_4 AND perl is earlier than 4:5.10.1-130.el6_4 AND perl-Module-Load-Conditional is earlier than 0:0.30-130.el6_4 AND perl-Digest-SHA is earlier than 1:5.47-130.el6_4 AND perl-Locale-Maketext-Simple is earlier than 1:0.18-130.el6_4 AND perl-Time-Piece is earlier than 0:1.15-130.el6_4 AND perl-Archive-Tar is earlier than 0:1.58-130.el6_4 AND perl-devel is earlier than 4:5.10.1-130.el6_4 AND perl-Parse-CPAN-Meta is earlier than 1:1.40-130.el6_4 AND perl-ExtUtils-MakeMaker is earlier than 0:6.55-130.el6_4 AND perl-Module-Build is earlier than 1:0.3500-130.el6_4 AND perl-IPC-Cmd is earlier than 1:0.56-130.el6_4 AND perl-CPAN is earlier than 0:1.9402-130.el6_4 AND perl-Term-UI is earlier than 0:0.20-130.el6_4 AND perl-ExtUtils-Embed is earlier than 0:1.28-130.el6_4 AND perl-Object-Accessor is earlier than 1:0.34-130.el6_4 AND perl-Compress-Raw-Bzip2 is earlier than 0:2.020-130.el6_4 AND perl-Log-Message is earlier than 1:0.02-130.el6_4 AND Operation system section Redhat 5 or Centos 5 release The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x Packages section perl-suidperl is earlier than 4:5.8.8-40.el5_9 AND perl is earlier than 4:5.8.8-40.el5_9

Definition Id: oval:org.mitre.oval:def:23419

Oval ID:	oval:org.mitre.oval:def:23419
Title:	DEPRECATED: ELSA-2013:0685: perl security update (Moderate)
Description:	The rehash mechanism in Perl 5.8.2 through 5.16.x allows context-dependent attackers to cause a denial of service (memory consumption and crash) via a crafted hash key.
Family:	unix	Class:	patch
Reference(s):	ELSA-2013:0685-01 CVE-2012-5195 CVE-2012-5526 CVE-2012-6329 CVE-2013-1667	Version:	22
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	perl
Definition Synopsis:
rpm test Oracle Linux 6.x AND rpm test perl-libs is earlier than 4:5.10.1-130.el6_4 AND perl-suidperl is earlier than 4:5.10.1-130.el6_4 AND perl-core is earlier than 0:5.10.1-130.el6_4 AND perl-Package-Constants is earlier than 1:0.02-130.el6_4 AND perl-ExtUtils-CBuilder is earlier than 1:0.27-130.el6_4 AND perl-IO-Compress-Base is earlier than 0:2.020-130.el6_4 AND perl-Time-HiRes is earlier than 4:1.9721-130.el6_4 AND perl-CGI is earlier than 0:3.51-130.el6_4 AND perl-Log-Message-Simple is earlier than 0:0.04-130.el6_4 AND perl-Archive-Extract is earlier than 1:0.38-130.el6_4 AND perl-version is earlier than 3:0.77-130.el6_4 AND perl-ExtUtils-ParseXS is earlier than 1:2.2003.0-130.el6_4 AND perl-Test-Simple is earlier than 0:0.92-130.el6_4 AND perl-Compress-Raw-Zlib is earlier than 1:2.020-130.el6_4 AND perl-Module-Loaded is earlier than 1:0.02-130.el6_4 AND perl-IO-Compress-Bzip2 is earlier than 0:2.020-130.el6_4 AND perl-Module-Pluggable is earlier than 1:3.90-130.el6_4 AND perl-Test-Harness is earlier than 0:3.17-130.el6_4 AND perl-Pod-Escapes is earlier than 1:1.04-130.el6_4 AND perl-parent is earlier than 1:0.221-130.el6_4 AND perl-IO-Compress-Zlib is earlier than 0:2.020-130.el6_4 AND perl-CPANPLUS is earlier than 0:0.88-130.el6_4 AND perl-Pod-Simple is earlier than 1:3.13-130.el6_4 AND perl-Module-Load is earlier than 1:0.16-130.el6_4 AND perl-File-Fetch is earlier than 0:0.26-130.el6_4 AND perl-Module-CoreList is earlier than 0:2.18-130.el6_4 AND perl-IO-Zlib is earlier than 1:1.09-130.el6_4 AND perl-Params-Check is earlier than 1:0.26-130.el6_4 AND perl-Compress-Zlib is earlier than 0:2.020-130.el6_4 AND perl is earlier than 4:5.10.1-130.el6_4 AND perl-Module-Load-Conditional is earlier than 0:0.30-130.el6_4 AND perl-Digest-SHA is earlier than 1:5.47-130.el6_4 AND perl-Locale-Maketext-Simple is earlier than 1:0.18-130.el6_4 AND perl-Time-Piece is earlier than 0:1.15-130.el6_4 AND perl-Archive-Tar is earlier than 0:1.58-130.el6_4 AND perl-devel is earlier than 4:5.10.1-130.el6_4 AND perl-Parse-CPAN-Meta is earlier than 1:1.40-130.el6_4 AND perl-ExtUtils-MakeMaker is earlier than 0:6.55-130.el6_4 AND perl-Module-Build is earlier than 1:0.3500-130.el6_4 AND perl-IPC-Cmd is earlier than 1:0.56-130.el6_4 AND perl-CPAN is earlier than 0:1.9402-130.el6_4 AND perl-Term-UI is earlier than 0:0.20-130.el6_4 AND perl-ExtUtils-Embed is earlier than 0:1.28-130.el6_4 AND perl-Object-Accessor is earlier than 1:0.34-130.el6_4 AND perl-Compress-Raw-Bzip2 is earlier than 0:2.020-130.el6_4 AND perl-Log-Message is earlier than 1:0.02-130.el6_4 OR rpm test Oracle Linux 5.x AND rpm test perl-suidperl is earlier than 4:5.8.8-40.el5_9 AND perl is earlier than 4:5.8.8-40.el5_9

Definition Id: oval:org.mitre.oval:def:23712

Oval ID:	oval:org.mitre.oval:def:23712
Title:	ELSA-2013:0685: perl security update (Moderate)
Description:	The rehash mechanism in Perl 5.8.2 through 5.16.x allows context-dependent attackers to cause a denial of service (memory consumption and crash) via a crafted hash key.
Family:	unix	Class:	patch
Reference(s):	ELSA-2013:0685-01 CVE-2012-5195 CVE-2012-5526 CVE-2012-6329 CVE-2013-1667	Version:	21
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	perl
Definition Synopsis:
rpm test Oracle Linux 6.x AND rpm test perl-libs is earlier than 4:5.10.1-130.el6_4 AND perl-suidperl is earlier than 4:5.10.1-130.el6_4 AND perl-core is earlier than 0:5.10.1-130.el6_4 AND perl-Package-Constants is earlier than 1:0.02-130.el6_4 AND perl-ExtUtils-CBuilder is earlier than 1:0.27-130.el6_4 AND perl-IO-Compress-Base is earlier than 0:2.020-130.el6_4 AND perl-Time-HiRes is earlier than 4:1.9721-130.el6_4 AND perl-CGI is earlier than 0:3.51-130.el6_4 AND perl-Log-Message-Simple is earlier than 0:0.04-130.el6_4 AND perl-Archive-Extract is earlier than 1:0.38-130.el6_4 AND perl-version is earlier than 3:0.77-130.el6_4 AND perl-ExtUtils-ParseXS is earlier than 1:2.2003.0-130.el6_4 AND perl-Test-Simple is earlier than 0:0.92-130.el6_4 AND perl-Compress-Raw-Zlib is earlier than 1:2.020-130.el6_4 AND perl-Module-Loaded is earlier than 1:0.02-130.el6_4 AND perl-IO-Compress-Bzip2 is earlier than 0:2.020-130.el6_4 AND perl-Module-Pluggable is earlier than 1:3.90-130.el6_4 AND perl-Test-Harness is earlier than 0:3.17-130.el6_4 AND perl-Pod-Escapes is earlier than 1:1.04-130.el6_4 AND perl-parent is earlier than 1:0.221-130.el6_4 AND perl-IO-Compress-Zlib is earlier than 0:2.020-130.el6_4 AND perl-CPANPLUS is earlier than 0:0.88-130.el6_4 AND perl-Pod-Simple is earlier than 1:3.13-130.el6_4 AND perl-Module-Load is earlier than 1:0.16-130.el6_4 AND perl-File-Fetch is earlier than 0:0.26-130.el6_4 AND perl-Module-CoreList is earlier than 0:2.18-130.el6_4 AND perl-IO-Zlib is earlier than 1:1.09-130.el6_4 AND perl-Params-Check is earlier than 1:0.26-130.el6_4 AND perl-Compress-Zlib is earlier than 0:2.020-130.el6_4 AND perl is earlier than 4:5.10.1-130.el6_4 AND perl-Module-Load-Conditional is earlier than 0:0.30-130.el6_4 AND perl-Digest-SHA is earlier than 1:5.47-130.el6_4 AND perl-Locale-Maketext-Simple is earlier than 1:0.18-130.el6_4 AND perl-Time-Piece is earlier than 0:1.15-130.el6_4 AND perl-Archive-Tar is earlier than 0:1.58-130.el6_4 AND perl-devel is earlier than 4:5.10.1-130.el6_4 AND perl-Parse-CPAN-Meta is earlier than 1:1.40-130.el6_4 AND perl-ExtUtils-MakeMaker is earlier than 0:6.55-130.el6_4 AND perl-Module-Build is earlier than 1:0.3500-130.el6_4 AND perl-IPC-Cmd is earlier than 1:0.56-130.el6_4 AND perl-CPAN is earlier than 0:1.9402-130.el6_4 AND perl-Term-UI is earlier than 0:0.20-130.el6_4 AND perl-ExtUtils-Embed is earlier than 0:1.28-130.el6_4 AND perl-Object-Accessor is earlier than 1:0.34-130.el6_4 AND perl-Compress-Raw-Bzip2 is earlier than 0:2.020-130.el6_4 AND perl-Log-Message is earlier than 1:0.02-130.el6_4 OR rpm test Oracle Linux 5.x AND rpm test perl-suidperl is earlier than 4:5.8.8-40.el5_9 AND perl is earlier than 4:5.8.8-40.el5_9

Definition Id: oval:org.mitre.oval:def:29021

Oval ID:	oval:org.mitre.oval:def:29021
Title:	DSA-2641-2 -- perl -- rehashing flaw
Description:	Yves Orton discovered a flaw in the rehashing code of Perl. This flaw could be exploited to carry out a denial of service attack against code that uses arbitrary user input as hash keys. Specifically an attacker could create a set of keys of a hash causing a denial of service via memory exhaustion.
Family:	unix	Class:	patch
Reference(s):	DSA-2641-2 CVE-2013-1667	Version:	3
Platform(s):	Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0	Product(s):	perl libapache2-mod-perl2
Definition Synopsis:
Debian 6.0 is installed GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed AND Debian GNU/kFreeBSD is installed Packages match section perl is earlier than 0:5.10.1-17squeeze6 AND libapache2-mod-perl2 is earlier than 0:2.0.4-7+squeeze1

CPE : Common Platform Enumeration

Type	Description	Count
Application	Perl cpe:2.3:a:perl:perl:5.8.9:::::::* cpe:2.3:a:perl:perl:5.8.8:::::::* cpe:2.3:a:perl:perl:5.8.7:::::::* cpe:2.3:a:perl:perl:5.8.6:::::::* cpe:2.3:a:perl:perl:5.8.5:::::::* cpe:2.3:a:perl:perl:5.8.4:::::::* cpe:2.3:a:perl:perl:5.8.3:::::::* cpe:2.3:a:perl:perl:5.8.2:::::::* cpe:2.3:a:perl:perl:5.8.10:::::::* cpe:2.3:a:perl:perl:5.16.2:::::::* cpe:2.3:a:perl:perl:5.16.1:::::::* cpe:2.3:a:perl:perl:5.16.0:::::::* cpe:2.3:a:perl:perl:5.14.3:::::::* cpe:2.3:a:perl:perl:5.14.2:::::::* cpe:2.3:a:perl:perl:5.14.1:::::::* cpe:2.3:a:perl:perl:5.14.0:::::::* cpe:2.3:a:perl:perl:5.14.0:rc1:::::: cpe:2.3:a:perl:perl:5.14.0:rc2:::::: cpe:2.3:a:perl:perl:5.14.0:rc3:::::: cpe:2.3:a:perl:perl:5.13.9:::::::* cpe:2.3:a:perl:perl:5.13.8:::::::* cpe:2.3:a:perl:perl:5.13.7:::::::* cpe:2.3:a:perl:perl:5.13.6:::::::* cpe:2.3:a:perl:perl:5.13.5:::::::* cpe:2.3:a:perl:perl:5.13.4:::::::* cpe:2.3:a:perl:perl:5.13.3:::::::* cpe:2.3:a:perl:perl:5.13.2:::::::* cpe:2.3:a:perl:perl:5.13.11:::::::* cpe:2.3:a:perl:perl:5.13.10:::::::* cpe:2.3:a:perl:perl:5.13.1:::::::* cpe:2.3:a:perl:perl:5.13.0:::::::* cpe:2.3:a:perl:perl:5.12.4:::::::* cpe:2.3:a:perl:perl:5.12.3:rc3:::::: cpe:2.3:a:perl:perl:5.12.3:rc1:::::: cpe:2.3:a:perl:perl:5.12.3:::::::* cpe:2.3:a:perl:perl:5.12.3:rc2:::::: cpe:2.3:a:perl:perl:5.12.2:::::::* cpe:2.3:a:perl:perl:5.12.2:rc1:::::: cpe:2.3:a:perl:perl:5.12.1:::::::* cpe:2.3:a:perl:perl:5.12.1:rc2:::::: cpe:2.3:a:perl:perl:5.12.1:rc1:::::: cpe:2.3:a:perl:perl:5.12.0:rc4:::::: cpe:2.3:a:perl:perl:5.12.0:rc0:::::: cpe:2.3:a:perl:perl:5.12.0:rc5:::::: cpe:2.3:a:perl:perl:5.12.0:rc3:::::: cpe:2.3:a:perl:perl:5.12.0:rc2:::::: cpe:2.3:a:perl:perl:5.12.0:rc1:::::: cpe:2.3:a:perl:perl:5.12.0:::::::* cpe:2.3:a:perl:perl:5.11.5:::::::* cpe:2.3:a:perl:perl:5.11.4:::::::* cpe:2.3:a:perl:perl:5.11.3:::::::* cpe:2.3:a:perl:perl:5.11.2:::::::* cpe:2.3:a:perl:perl:5.11.1:::::::* cpe:2.3:a:perl:perl:5.11.0:::::::* cpe:2.3:a:perl:perl:5.10.1:rc1:::::: cpe:2.3:a:perl:perl:5.10.1:rc2:::::: cpe:2.3:a:perl:perl:5.10.1:::::::* cpe:2.3:a:perl:perl:5.10.0:rc1:::::: cpe:2.3:a:perl:perl:5.10.0:::::::* cpe:2.3:a:perl:perl:5.10.0:rc2:::::: cpe:2.3:a:perl:perl:5.10:::::::*	61

Nessus® Vulnerability Scanner

Date	Description
2016-06-22	Name : The remote OracleVM host is missing a security update. File : oraclevm_OVMSA-2016-0076.nasl - Type : ACT_GATHER_INFO
2015-09-16	Name : The remote device is missing a vendor-supplied security patch. File : f5_bigip_SOL15867.nasl - Type : ACT_GATHER_INFO
2015-01-19	Name : The remote Solaris system is missing a security patch for third-party software. File : solaris11_perl-58_20130521.nasl - Type : ACT_GATHER_INFO
2015-01-19	Name : The remote Solaris system is missing a security patch for third-party software. File : solaris11_perl-516_20130521.nasl - Type : ACT_GATHER_INFO
2015-01-19	Name : The remote Solaris system is missing a security patch for third-party software. File : solaris11_perl-512_20130521.nasl - Type : ACT_GATHER_INFO
2014-11-08	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2013-0746.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : openSUSE-2013-225.nasl - Type : ACT_GATHER_INFO
2014-01-20	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201401-11.nasl - Type : ACT_GATHER_INFO
2013-10-23	Name : The remote host is missing a Mac OS X update that fixes multiple security vul... File : macosx_10_9.nasl - Type : ACT_GATHER_INFO
2013-09-04	Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2013-177.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2013-0685.nasl - Type : ACT_GATHER_INFO
2013-04-20	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2013-113.nasl - Type : ACT_GATHER_INFO
2013-04-03	Name : The remote Fedora host is missing a security update. File : fedora_2013-3673.nasl - Type : ACT_GATHER_INFO
2013-03-28	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20130326_perl_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2013-03-27	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2013-0685.nasl - Type : ACT_GATHER_INFO
2013-03-27	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2013-0685.nasl - Type : ACT_GATHER_INFO
2013-03-22	Name : The remote Fedora host is missing a security update. File : fedora_2013-3436.nasl - Type : ACT_GATHER_INFO
2013-03-20	Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1770-1.nasl - Type : ACT_GATHER_INFO
2013-03-15	Name : The remote Slackware host is missing a security update. File : Slackware_SSA_2013-072-01.nasl - Type : ACT_GATHER_INFO
2013-03-13	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_perl-130301.nasl - Type : ACT_GATHER_INFO
2013-03-13	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_perl-8479.nasl - Type : ACT_GATHER_INFO
2013-03-12	Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_68c1f75b882411e29996c48508086173.nasl - Type : ACT_GATHER_INFO
2013-03-11	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2641.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-02-17 12:01:43	Multiple Updates
2013-03-21 00:19:48	Multiple Updates
2013-03-19 21:17:34	First insertion

Global Informations

Type	Count
CWE ID(s)	1
Oval ID(s)	9
CPE ID(s)	61
Nessus® Exploit(s)	23

	Related
7.5	CVE-2013-1667
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 1 more Alert(s)

7.5 - USN-1770-1

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

OVAL Definitions

CPE : Common Platform Enumeration

Nessus® Vulnerability Scanner

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU