CVE-2011-2939
13.01.2012, 18:55
Off-by-one error in the decode_xs function in Unicode/Unicode.xs in the Encode module before 2.44, as used in Perl before 5.15.6, might allow context-dependent attackers to cause a denial of service (memory corruption) via a crafted Unicode string, which triggers a heap-based buffer overflow.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| dan_kogai | encode_module | 𝑥 ≤ 2.43 |
| dan_kogai | encode_module | 0.93 |
| dan_kogai | encode_module | 0.94 |
| dan_kogai | encode_module | 0.95 |
| dan_kogai | encode_module | 0.96 |
| dan_kogai | encode_module | 0.97 |
| dan_kogai | encode_module | 0.98 |
| dan_kogai | encode_module | 0.99 |
| dan_kogai | encode_module | 1.00 |
| dan_kogai | encode_module | 1.01 |
| dan_kogai | encode_module | 1.10 |
| dan_kogai | encode_module | 1.11 |
| dan_kogai | encode_module | 1.20 |
| dan_kogai | encode_module | 1.21 |
| dan_kogai | encode_module | 1.25 |
| dan_kogai | encode_module | 1.26 |
| dan_kogai | encode_module | 1.28 |
| dan_kogai | encode_module | 1.30 |
| dan_kogai | encode_module | 1.31 |
| dan_kogai | encode_module | 1.32 |
| dan_kogai | encode_module | 1.33 |
| dan_kogai | encode_module | 1.34 |
| dan_kogai | encode_module | 1.40 |
| dan_kogai | encode_module | 1.41 |
| dan_kogai | encode_module | 1.42 |
| dan_kogai | encode_module | 1.50 |
| dan_kogai | encode_module | 1.51 |
| dan_kogai | encode_module | 1.52 |
| dan_kogai | encode_module | 1.53 |
| dan_kogai | encode_module | 1.54 |
| dan_kogai | encode_module | 1.55 |
| dan_kogai | encode_module | 1.56 |
| dan_kogai | encode_module | 1.57 |
| dan_kogai | encode_module | 1.58 |
| dan_kogai | encode_module | 1.59 |
| dan_kogai | encode_module | 1.60 |
| dan_kogai | encode_module | 1.61 |
| dan_kogai | encode_module | 1.62 |
| dan_kogai | encode_module | 1.63 |
| dan_kogai | encode_module | 1.64 |
| dan_kogai | encode_module | 1.65 |
| dan_kogai | encode_module | 1.66 |
| dan_kogai | encode_module | 1.67 |
| dan_kogai | encode_module | 1.68 |
| dan_kogai | encode_module | 1.69 |
| dan_kogai | encode_module | 1.70 |
| dan_kogai | encode_module | 1.71 |
| dan_kogai | encode_module | 1.72 |
| dan_kogai | encode_module | 1.73 |
| dan_kogai | encode_module | 1.74 |
| dan_kogai | encode_module | 1.75 |
| dan_kogai | encode_module | 1.76 |
| dan_kogai | encode_module | 1.77 |
| dan_kogai | encode_module | 1.78 |
| dan_kogai | encode_module | 1.79 |
| dan_kogai | encode_module | 1.80 |
| dan_kogai | encode_module | 1.81 |
| dan_kogai | encode_module | 1.82 |
| dan_kogai | encode_module | 1.83 |
| dan_kogai | encode_module | 1.84 |
| dan_kogai | encode_module | 1.85 |
| dan_kogai | encode_module | 1.86 |
| dan_kogai | encode_module | 1.87 |
| dan_kogai | encode_module | 1.88 |
| dan_kogai | encode_module | 1.89 |
| dan_kogai | encode_module | 1.90 |
| dan_kogai | encode_module | 1.91 |
| dan_kogai | encode_module | 1.92 |
| dan_kogai | encode_module | 1.93 |
| dan_kogai | encode_module | 1.94 |
| dan_kogai | encode_module | 1.95 |
| dan_kogai | encode_module | 1.96 |
| dan_kogai | encode_module | 1.97 |
| dan_kogai | encode_module | 1.98 |
| dan_kogai | encode_module | 1.99 |
| dan_kogai | encode_module | 2.0 |
| dan_kogai | encode_module | 2.01 |
| dan_kogai | encode_module | 2.02 |
| dan_kogai | encode_module | 2.03 |
| dan_kogai | encode_module | 2.04 |
| dan_kogai | encode_module | 2.05 |
| dan_kogai | encode_module | 2.06 |
| dan_kogai | encode_module | 2.07 |
| dan_kogai | encode_module | 2.08 |
| dan_kogai | encode_module | 2.09 |
| dan_kogai | encode_module | 2.10 |
| dan_kogai | encode_module | 2.11 |
| dan_kogai | encode_module | 2.12 |
| dan_kogai | encode_module | 2.13 |
| dan_kogai | encode_module | 2.14 |
| dan_kogai | encode_module | 2.15 |
| dan_kogai | encode_module | 2.16 |
| dan_kogai | encode_module | 2.17 |
| dan_kogai | encode_module | 2.18 |
| dan_kogai | encode_module | 2.19 |
| dan_kogai | encode_module | 2.20 |
| dan_kogai | encode_module | 2.21 |
| dan_kogai | encode_module | 2.22 |
| dan_kogai | encode_module | 2.23 |
| dan_kogai | encode_module | 2.24 |
| dan_kogai | encode_module | 2.25 |
| dan_kogai | encode_module | 2.26 |
| dan_kogai | encode_module | 2.27 |
| dan_kogai | encode_module | 2.28 |
| dan_kogai | encode_module | 2.29 |
| dan_kogai | encode_module | 2.30 |
| dan_kogai | encode_module | 2.31 |
| dan_kogai | encode_module | 2.32 |
| dan_kogai | encode_module | 2.33 |
| dan_kogai | encode_module | 2.34 |
| dan_kogai | encode_module | 2.35 |
| dan_kogai | encode_module | 2.36 |
| dan_kogai | encode_module | 2.37 |
| dan_kogai | encode_module | 2.38 |
| dan_kogai | encode_module | 2.39 |
| dan_kogai | encode_module | 2.40 |
| dan_kogai | encode_module | 2.41 |
| dan_kogai | encode_module | 2.42 |
| perl | perl | 𝑥 ≤ 5.14.2 |
| perl | perl | 5.8.1 |
| perl | perl | 5.8.2 |
| perl | perl | 5.8.3 |
| perl | perl | 5.8.4 |
| perl | perl | 5.8.5 |
| perl | perl | 5.8.6 |
| perl | perl | 5.8.7 |
| perl | perl | 5.8.8 |
| perl | perl | 5.8.9 |
| perl | perl | 5.8.10 |
| perl | perl | 5.9.2 |
| perl | perl | 5.10 |
| perl | perl | 5.10.0 |
| perl | perl | 5.10.0:rc1 |
| perl | perl | 5.10.0:rc2 |
| perl | perl | 5.10.1 |
| perl | perl | 5.10.1:rc1 |
| perl | perl | 5.10.1:rc2 |
| perl | perl | 5.11.0 |
| perl | perl | 5.11.1 |
| perl | perl | 5.11.2 |
| perl | perl | 5.11.3 |
| perl | perl | 5.11.4 |
| perl | perl | 5.11.5 |
| perl | perl | 5.12.0 |
| perl | perl | 5.12.0:rc0 |
| perl | perl | 5.12.0:rc1 |
| perl | perl | 5.12.0:rc2 |
| perl | perl | 5.12.0:rc3 |
| perl | perl | 5.12.0:rc4 |
| perl | perl | 5.12.0:rc5 |
| perl | perl | 5.12.1 |
| perl | perl | 5.12.1:rc1 |
| perl | perl | 5.12.1:rc2 |
| perl | perl | 5.12.2 |
| perl | perl | 5.12.2:rc1 |
| perl | perl | 5.12.3 |
| perl | perl | 5.12.3:rc1 |
| perl | perl | 5.12.3:rc2 |
| perl | perl | 5.12.3:rc3 |
| perl | perl | 5.13.0 |
| perl | perl | 5.13.1 |
| perl | perl | 5.13.2 |
| perl | perl | 5.13.3 |
| perl | perl | 5.13.4 |
| perl | perl | 5.13.5 |
| perl | perl | 5.13.6 |
| perl | perl | 5.13.7 |
| perl | perl | 5.13.8 |
| perl | perl | 5.13.9 |
| perl | perl | 5.13.10 |
| perl | perl | 5.13.11 |
| perl | perl | 5.14.0 |
| perl | perl | 5.14.0:rc1 |
| perl | perl | 5.14.0:rc2 |
| perl | perl | 5.14.0:rc3 |
| perl | perl | 5.14.1 |
𝑥
= Vulnerable software versions
Debian Releases
Debian Product | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| libencode-perl |
| ||||||||||||
| perl |
|
Ubuntu Releases
Red Hat Enterprise Linux Releases
Red Hat Product | |||
|---|---|---|---|
| perl |
| ||
| perl-Archive-Extract |
| ||
| perl-Archive-Tar |
| ||
| perl-CGI |
| ||
| perl-CPAN |
| ||
| perl-CPANPLUS |
| ||
| perl-Compress-Raw-Zlib |
| ||
| perl-Compress-Zlib |
| ||
| perl-Digest-SHA |
| ||
| perl-ExtUtils-CBuilder |
| ||
| perl-ExtUtils-Embed |
| ||
| perl-ExtUtils-MakeMaker |
| ||
| perl-ExtUtils-ParseXS |
| ||
| perl-File-Fetch |
| ||
| perl-IO-Compress-Base |
| ||
| perl-IO-Compress-Zlib |
| ||
| perl-IO-Zlib |
| ||
| perl-IPC-Cmd |
| ||
| perl-Locale-Maketext-Simple |
| ||
| perl-Log-Message |
| ||
| perl-Log-Message-Simple |
| ||
| perl-Module-Build |
| ||
| perl-Module-CoreList |
| ||
| perl-Module-Load |
| ||
| perl-Module-Load-Conditional |
| ||
| perl-Module-Loaded |
| ||
| perl-Module-Pluggable |
| ||
| perl-Object-Accessor |
| ||
| perl-Package-Constants |
| ||
| perl-Params-Check |
| ||
| perl-Parse-CPAN-Meta |
| ||
| perl-Pod-Escapes |
| ||
| perl-Pod-Simple |
| ||
| perl-Term-UI |
| ||
| perl-Test-Harness |
| ||
| perl-Test-Simple |
| ||
| perl-Time-HiRes |
| ||
| perl-Time-Piece |
| ||
| perl-core |
| ||
| perl-devel |
| ||
| perl-libs |
| ||
| perl-parent |
| ||
| perl-suidperl |
| ||
| perl-version |
|
Common Weakness Enumeration
References