Your message dated Thu, 23 Jul 2020 21:32:09 +0000
with message-id <[email protected]>
and subject line Bug#962005: fixed in perl 5.28.1-6+deb10u1
has caused the Debian Bug report #962005,
regarding perl: regexp security issues: CVE-2020-10543, CVE-2020-10878,
CVE-2020-12723
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
962005: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=962005
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: perl
Version: 5.30.2-1
Severity: important
Tags: security pending
X-Debbugs-Cc: [email protected]
These three issues have all been judged to be no-dsa. An unstable
release will be forthcoming and we hope to provide fixes for stable and
oldstable via point releases.
The following text comes from
<https://metacpan.org/release/XSAWYERX/perl-5.30.3>.
[CVE-2020-10543] Buffer overflow caused by a crafted regular expression
A signed size_t integer overflow in the storage space calculations for
nested regular expression quantifiers could cause a heap buffer overflow in
Perl's regular expression compiler that overwrites memory allocated after
the regular expression storage space with attacker supplied data.
The target system needs a sufficient amount of memory to allocate partial
expansions of the nested quantifiers prior to the overflow occurring. This
requirement is unlikely to be met on 64-bit systems.
Discovered by: ManhND of The Tarantula Team, VinCSS (a member of Vingroup).
[CVE-2020-10878] Integer overflow via malformed bytecode produced by a
crafted regular expression
Integer overflows in the calculation of offsets between instructions for the
regular expression engine could cause corruption of the intermediate
language state of a compiled regular expression. An attacker could abuse
this behaviour to insert instructions into the compiled form of a Perl
regular expression.
Discovered by: Hugo van der Sanden and Slaven Rezic.
[CVE-2020-12723] Buffer overflow caused by a crafted regular expression
Recursive calls to S_study_chunk() by Perl's regular expression compiler to
optimize the intermediate language representation of a regular expression
could cause corruption of the intermediate language state of a compiled
regular expression.
Discovered by: Sergey Aleynikov.
Additional Note
An application written in Perl would only be vulnerable to any of the above
flaws if it evaluates regular expressions supplied by the attacker.
Evaluating regular expressions in this fashion is known to be dangerous
since the regular expression engine does not protect against denial of
service attacks in this usage scenario.
--- End Message ---
--- Begin Message ---
Source: perl
Source-Version: 5.28.1-6+deb10u1
Done: Dominic Hargreaves <[email protected]>
We believe that the bug you reported is fixed in the latest version of
perl, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Dominic Hargreaves <[email protected]> (supplier of updated perl package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Tue, 21 Jul 2020 20:27:00 +0100
Source: perl
Architecture: source
Version: 5.28.1-6+deb10u1
Distribution: buster
Urgency: medium
Maintainer: Niko Tyni <[email protected]>
Changed-By: Dominic Hargreaves <[email protected]>
Closes: 962005 962019
Changes:
perl (5.28.1-6+deb10u1) buster; urgency=medium
.
* Multiple regexp security fixes (Closes: #962005)
+ [SECURITY] CVE-2020-10543: Buffer overflow caused by a crafted
regular expression
+ [SECURITY] CVE-2020-10878: Integer overflow via malformed bytecode
produced by a crafted regular expression
+ [SECURITY] CVE-2020-12723: Buffer overflow caused by a crafted
regular expression
* Fix FTBFS with IPv6-only host (Closes: #962019)
Checksums-Sha1:
b41cd9341d66326fbdc57af32ff44c94ed014465 2863 perl_5.28.1-6+deb10u1.dsc
5373cc70c69ab08aac031cbf0618ba3f29f7fd37 185004
perl_5.28.1-6+deb10u1.debian.tar.xz
2a36f93b94266d7366ee236acff85e676973391d 4817
perl_5.28.1-6+deb10u1_source.buildinfo
Checksums-Sha256:
a680d97001398640c249fc6bae6124fe59eb465b044f03fb4148b22152895785 2863
perl_5.28.1-6+deb10u1.dsc
e531c2d8c85b28b34c2122175a8e8f6cfe56b8a0708972fc4beae9876549d815 185004
perl_5.28.1-6+deb10u1.debian.tar.xz
707a6f390d1fac74bde067e49a7866af29a4ffed108e4a10b54251872c89f801 4817
perl_5.28.1-6+deb10u1_source.buildinfo
Files:
f075eeb566d92f3a03eba415889991d4 2863 perl standard perl_5.28.1-6+deb10u1.dsc
254ec057be58387a6b1fd7bdaef36d9c 185004 perl standard
perl_5.28.1-6+deb10u1.debian.tar.xz
4c7b1e160b2e95eac3abb9704570857e 4817 perl standard
perl_5.28.1-6+deb10u1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=nQav
-----END PGP SIGNATURE-----
--- End Message ---
