CVE-2009-1391 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	6.8 UNKNOWN	NETWORK	MEDIUM		AV:N/AC:M/Au:N/C:P/I:P/A:P
redhat	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 95%

Vendor	Product	Version
paul_marquess	compress-raw-zlib_perl_module	𝑥 ≤ 2.015
paul_marquess	compress-raw-zlib_perl_module	2.001
paul_marquess	compress-raw-zlib_perl_module	2.002
paul_marquess	compress-raw-zlib_perl_module	2.003
paul_marquess	compress-raw-zlib_perl_module	2.004
paul_marquess	compress-raw-zlib_perl_module	2.005
paul_marquess	compress-raw-zlib_perl_module	2.006
paul_marquess	compress-raw-zlib_perl_module	2.008
paul_marquess	compress-raw-zlib_perl_module	2.009
paul_marquess	compress-raw-zlib_perl_module	2.010
paul_marquess	compress-raw-zlib_perl_module	2.011
paul_marquess	compress-raw-zlib_perl_module	2.012
paul_marquess	compress-raw-zlib_perl_module	2.014

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

libcompress-raw-zlib-perl

bullseye	2.101-1 fixed
etch	not-affected
bookworm	2.204-1 fixed
sid	2.213-1 fixed
trixie	2.213-1 fixed

perl

bullseye	5.32.1-4+deb11u3 fixed
etch	not-affected
bullseye (security)	5.32.1-4+deb11u4 fixed
bookworm	5.36.0-7+deb12u1 fixed
sid	5.40.0-6 fixed
trixie	5.40.0-6 fixed

Ubuntu Releases

Ubuntu Product

Codename

libcompress-raw-zlib-perl

jaunty	Fixed 2.015-1ubuntu0.1 released
intrepid	Fixed 2.011-2ubuntu0.1 released
hardy	Fixed 2.008-1ubuntu0.1 released
dapper	dne

perl

jaunty	Fixed 5.10.0-19ubuntu1.1 released
intrepid	Fixed 5.10.0-11.1ubuntu2.3 released
hardy	not-affected
dapper	not-affected

Known Exploits!

Common Weakness Enumeration

CWE-189 -

References

http://article.gmane.org/gmane.mail.virus.amavis.user/33635

http://article.gmane.org/gmane.mail.virus.amavis.user/33638

http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html

http://osvdb.org/55041

http://secunia.com/advisories/35422

http://secunia.com/advisories/35685

http://secunia.com/advisories/35689

http://secunia.com/advisories/35876

http://security.gentoo.org/glsa/glsa-200908-07.xml

http://thread.gmane.org/gmane.mail.virus.amavis.user/33635

http://www.mandriva.com/security/advisories?name=MDVSA-2009:157

http://www.securityfocus.com/bid/35307

http://www.vupen.com/english/advisories/2009/1571

https://bugs.gentoo.org/show_bug.cgi?id=273141

https://bugzilla.redhat.com/show_bug.cgi?id=504386

https://exchange.xforce.ibmcloud.com/vulnerabilities/51062

https://usn.ubuntu.com/794-1/

https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00607.html

http://article.gmane.org/gmane.mail.virus.amavis.user/33635

http://article.gmane.org/gmane.mail.virus.amavis.user/33638

http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html

http://osvdb.org/55041

http://secunia.com/advisories/35422

http://secunia.com/advisories/35685

http://secunia.com/advisories/35689

http://secunia.com/advisories/35876

http://security.gentoo.org/glsa/glsa-200908-07.xml

http://thread.gmane.org/gmane.mail.virus.amavis.user/33635

http://www.mandriva.com/security/advisories?name=MDVSA-2009:157

http://www.securityfocus.com/bid/35307

http://www.vupen.com/english/advisories/2009/1571

https://bugs.gentoo.org/show_bug.cgi?id=273141

https://bugzilla.redhat.com/show_bug.cgi?id=504386

https://exchange.xforce.ibmcloud.com/vulnerabilities/51062

https://usn.ubuntu.com/794-1/

https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00607.html