The Debian Hack Shop

It has been discovered that the Perl interpreter may encounter a buffer
overflow condition when compiling certain regular expressions containing
Unicode characters. This also happens if the offending characters are
contained in a variable reference protected by the \Q…\E quoting
construct. When encountering this condition, the Perl interpreter
typically crashes, but arbitrary code execution cannot be ruled out.

Read the full story: DSA-1556 perl – heap buffer overflow: http://www.debian.org/security/2008/dsa-1556

Tags: advisory, Debian, DSA, Security

This entry was posted on Friday, April 25th, 2008 at 4:34 am and is filed under Debian Security. You can follow any responses to this entry through the RSS 2.0 feed. You can skip to the end and leave a response. Pinging is currently not allowed.