cvelistv5 - cve-2005-3962

CVE-2005-3962 (GCVE-0-2005-3962)

Vulnerability from cvelistv5

Published

2005-12-01 17:00

Modified

2024-08-07 23:31

Severity ?

CWE

Summary

Integer overflow in the format string functionality (Perl_sv_vcatpvfn) in Perl 5.9.2 and 5.8.6 Perl allows attackers to overwrite arbitrary memory and possibly execute arbitrary code via format string specifiers with large values, which causes an integer wrap and leads to a buffer overflow, as demonstrated using format string vulnerabilities in Perl applications.

References

►

URL

	Vendor	Product	Version
	n/a	n/a	Version: n/a

rhsa-2005:881

Vulnerability from csaf_redhat

Published

2005-12-20 15:00

Modified

2024-11-22 00:08

Summary

Red Hat Security Advisory: perl security update

Notes

Topic

Updated Perl packages that fix security issues and bugs are now available for Red Hat Enterprise Linux 3. This update has been rated as having moderate security impact by the Red Hat Security Response Team.

Details

Perl is a high-level programming language commonly used for system administration utilities and Web programming. An integer overflow bug was found in Perl's format string processor. It is possible for an attacker to cause perl to crash or execute arbitrary code if the attacker is able to process a malicious format string. This issue is only exploitable through a script wich passes arbitrary untrusted strings to the format string processor. The Common Vulnerabilities and Exposures project assigned the name CVE-2005-3962 to this issue. Paul Szabo discovered a bug in the way Perl's File::Path::rmtree module removed directory trees. If a local user has write permissions to a subdirectory within the tree being removed by File::Path::rmtree, it is possible for them to create setuid binary files. (CVE-2005-0448) Solar Designer discovered several temporary file bugs in various Perl modules. A local attacker could overwrite or create files as the user running a Perl script that uses a vulnerable module. (CVE-2004-0976) Users of Perl are advised to upgrade to these updated packages, which contain backported patches to correct these issues as well as fixes for several bugs.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated Perl packages that fix security issues and bugs are now available\nfor Red Hat Enterprise Linux 3.\n\nThis update has been rated as having moderate security impact by the Red\nHat Security Response Team.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Perl is a high-level programming language commonly used for system\nadministration utilities and Web programming.\n\nAn integer overflow bug was found in Perl\u0027s format string processor.  It is\npossible for an attacker to cause perl to crash or execute arbitrary code\nif the attacker is able to process a malicious format string.  This issue\nis only exploitable through a script wich passes arbitrary untrusted\nstrings to the format string processor.  The Common Vulnerabilities and\nExposures project assigned the name CVE-2005-3962 to this issue.\n\nPaul Szabo discovered a bug in the way Perl\u0027s File::Path::rmtree module\nremoved directory trees.  If a local user has write permissions to a\nsubdirectory within the tree being removed by File::Path::rmtree, it is\npossible for them to create setuid binary files.  (CVE-2005-0448)\n\nSolar Designer discovered several temporary file bugs in various Perl\nmodules.  A local attacker could overwrite or create files as the user\nrunning a Perl script that uses a vulnerable module.  (CVE-2004-0976)\n\nUsers of Perl are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues as well as fixes for\nseveral bugs.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2005:881",
        "url": "https://access.redhat.com/errata/RHSA-2005:881"
      },
      {
        "category": "external",
        "summary": "123176",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=123176"
      },
      {
        "category": "external",
        "summary": "135975",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=135975"
      },
      {
        "category": "external",
        "summary": "136325",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=136325"
      },
      {
        "category": "external",
        "summary": "137075",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=137075"
      },
      {
        "category": "external",
        "summary": "145215",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=145215"
      },
      {
        "category": "external",
        "summary": "147946",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=147946"
      },
      {
        "category": "external",
        "summary": "161053",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=161053"
      },
      {
        "category": "external",
        "summary": "165078",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=165078"
      },
      {
        "category": "external",
        "summary": "166732",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=166732"
      },
      {
        "category": "external",
        "summary": "172160",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=172160"
      },
      {
        "category": "external",
        "summary": "172256",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=172256"
      },
      {
        "category": "external",
        "summary": "172317",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=172317"
      },
      {
        "category": "external",
        "summary": "174717",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=174717"
      },
      {
        "category": "external",
        "summary": "175135",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=175135"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2005/rhsa-2005_881.json"
      }
    ],
    "title": "Red Hat Security Advisory: perl security update",
    "tracking": {
      "current_release_date": "2024-11-22T00:08:13+00:00",
      "generator": {
        "date": "2024-11-22T00:08:13+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2005:881",
      "initial_release_date": "2005-12-20T15:00:00+00:00",
      "revision_history": [
        {
          "date": "2005-12-20T15:00:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2005-12-20T00:00:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-22T00:08:13+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AS version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux AS version 3",
                  "product_id": "3AS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::as"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Desktop version 3",
                "product": {
                  "name": "Red Hat Desktop version 3",
                  "product_id": "3Desktop",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::desktop"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux ES version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux ES version 3",
                  "product_id": "3ES",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::es"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux WS version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux WS version 3",
                  "product_id": "3WS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::ws"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "perl-CPAN-2:1.61-90.4.ia64",
                "product": {
                  "name": "perl-CPAN-2:1.61-90.4.ia64",
                  "product_id": "perl-CPAN-2:1.61-90.4.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-CPAN@1.61-90.4?arch=ia64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-2:5.8.0-90.4.ia64",
                "product": {
                  "name": "perl-2:5.8.0-90.4.ia64",
                  "product_id": "perl-2:5.8.0-90.4.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl@5.8.0-90.4?arch=ia64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-CGI-2:2.89-90.4.ia64",
                "product": {
                  "name": "perl-CGI-2:2.89-90.4.ia64",
                  "product_id": "perl-CGI-2:2.89-90.4.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-CGI@2.89-90.4?arch=ia64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-suidperl-2:5.8.0-90.4.ia64",
                "product": {
                  "name": "perl-suidperl-2:5.8.0-90.4.ia64",
                  "product_id": "perl-suidperl-2:5.8.0-90.4.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-suidperl@5.8.0-90.4?arch=ia64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-DB_File-2:1.806-90.4.ia64",
                "product": {
                  "name": "perl-DB_File-2:1.806-90.4.ia64",
                  "product_id": "perl-DB_File-2:1.806-90.4.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-DB_File@1.806-90.4?arch=ia64\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ia64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "perl-CPAN-2:1.61-90.4.x86_64",
                "product": {
                  "name": "perl-CPAN-2:1.61-90.4.x86_64",
                  "product_id": "perl-CPAN-2:1.61-90.4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-CPAN@1.61-90.4?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-2:5.8.0-90.4.x86_64",
                "product": {
                  "name": "perl-2:5.8.0-90.4.x86_64",
                  "product_id": "perl-2:5.8.0-90.4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl@5.8.0-90.4?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-CGI-2:2.89-90.4.x86_64",
                "product": {
                  "name": "perl-CGI-2:2.89-90.4.x86_64",
                  "product_id": "perl-CGI-2:2.89-90.4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-CGI@2.89-90.4?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-suidperl-2:5.8.0-90.4.x86_64",
                "product": {
                  "name": "perl-suidperl-2:5.8.0-90.4.x86_64",
                  "product_id": "perl-suidperl-2:5.8.0-90.4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-suidperl@5.8.0-90.4?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-DB_File-2:1.806-90.4.x86_64",
                "product": {
                  "name": "perl-DB_File-2:1.806-90.4.x86_64",
                  "product_id": "perl-DB_File-2:1.806-90.4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-DB_File@1.806-90.4?arch=x86_64\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "perl-CPAN-2:1.61-90.4.i386",
                "product": {
                  "name": "perl-CPAN-2:1.61-90.4.i386",
                  "product_id": "perl-CPAN-2:1.61-90.4.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-CPAN@1.61-90.4?arch=i386\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-2:5.8.0-90.4.i386",
                "product": {
                  "name": "perl-2:5.8.0-90.4.i386",
                  "product_id": "perl-2:5.8.0-90.4.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl@5.8.0-90.4?arch=i386\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-CGI-2:2.89-90.4.i386",
                "product": {
                  "name": "perl-CGI-2:2.89-90.4.i386",
                  "product_id": "perl-CGI-2:2.89-90.4.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-CGI@2.89-90.4?arch=i386\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-suidperl-2:5.8.0-90.4.i386",
                "product": {
                  "name": "perl-suidperl-2:5.8.0-90.4.i386",
                  "product_id": "perl-suidperl-2:5.8.0-90.4.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-suidperl@5.8.0-90.4?arch=i386\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-DB_File-2:1.806-90.4.i386",
                "product": {
                  "name": "perl-DB_File-2:1.806-90.4.i386",
                  "product_id": "perl-DB_File-2:1.806-90.4.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-DB_File@1.806-90.4?arch=i386\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i386"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "perl-2:5.8.0-90.4.src",
                "product": {
                  "name": "perl-2:5.8.0-90.4.src",
                  "product_id": "perl-2:5.8.0-90.4.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl@5.8.0-90.4?arch=src\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "perl-CPAN-2:1.61-90.4.ppc",
                "product": {
                  "name": "perl-CPAN-2:1.61-90.4.ppc",
                  "product_id": "perl-CPAN-2:1.61-90.4.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-CPAN@1.61-90.4?arch=ppc\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-2:5.8.0-90.4.ppc",
                "product": {
                  "name": "perl-2:5.8.0-90.4.ppc",
                  "product_id": "perl-2:5.8.0-90.4.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl@5.8.0-90.4?arch=ppc\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-CGI-2:2.89-90.4.ppc",
                "product": {
                  "name": "perl-CGI-2:2.89-90.4.ppc",
                  "product_id": "perl-CGI-2:2.89-90.4.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-CGI@2.89-90.4?arch=ppc\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-suidperl-2:5.8.0-90.4.ppc",
                "product": {
                  "name": "perl-suidperl-2:5.8.0-90.4.ppc",
                  "product_id": "perl-suidperl-2:5.8.0-90.4.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-suidperl@5.8.0-90.4?arch=ppc\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-DB_File-2:1.806-90.4.ppc",
                "product": {
                  "name": "perl-DB_File-2:1.806-90.4.ppc",
                  "product_id": "perl-DB_File-2:1.806-90.4.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-DB_File@1.806-90.4?arch=ppc\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "perl-CPAN-2:1.61-90.4.s390x",
                "product": {
                  "name": "perl-CPAN-2:1.61-90.4.s390x",
                  "product_id": "perl-CPAN-2:1.61-90.4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-CPAN@1.61-90.4?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-2:5.8.0-90.4.s390x",
                "product": {
                  "name": "perl-2:5.8.0-90.4.s390x",
                  "product_id": "perl-2:5.8.0-90.4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl@5.8.0-90.4?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-CGI-2:2.89-90.4.s390x",
                "product": {
                  "name": "perl-CGI-2:2.89-90.4.s390x",
                  "product_id": "perl-CGI-2:2.89-90.4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-CGI@2.89-90.4?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-suidperl-2:5.8.0-90.4.s390x",
                "product": {
                  "name": "perl-suidperl-2:5.8.0-90.4.s390x",
                  "product_id": "perl-suidperl-2:5.8.0-90.4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-suidperl@5.8.0-90.4?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-DB_File-2:1.806-90.4.s390x",
                "product": {
                  "name": "perl-DB_File-2:1.806-90.4.s390x",
                  "product_id": "perl-DB_File-2:1.806-90.4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-DB_File@1.806-90.4?arch=s390x\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "perl-CPAN-2:1.61-90.4.s390",
                "product": {
                  "name": "perl-CPAN-2:1.61-90.4.s390",
                  "product_id": "perl-CPAN-2:1.61-90.4.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-CPAN@1.61-90.4?arch=s390\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-2:5.8.0-90.4.s390",
                "product": {
                  "name": "perl-2:5.8.0-90.4.s390",
                  "product_id": "perl-2:5.8.0-90.4.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl@5.8.0-90.4?arch=s390\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-CGI-2:2.89-90.4.s390",
                "product": {
                  "name": "perl-CGI-2:2.89-90.4.s390",
                  "product_id": "perl-CGI-2:2.89-90.4.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-CGI@2.89-90.4?arch=s390\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-suidperl-2:5.8.0-90.4.s390",
                "product": {
                  "name": "perl-suidperl-2:5.8.0-90.4.s390",
                  "product_id": "perl-suidperl-2:5.8.0-90.4.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-suidperl@5.8.0-90.4?arch=s390\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-DB_File-2:1.806-90.4.s390",
                "product": {
                  "name": "perl-DB_File-2:1.806-90.4.s390",
                  "product_id": "perl-DB_File-2:1.806-90.4.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-DB_File@1.806-90.4?arch=s390\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.i386 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-2:5.8.0-90.4.i386"
        },
        "product_reference": "perl-2:5.8.0-90.4.i386",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.ia64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-2:5.8.0-90.4.ia64"
        },
        "product_reference": "perl-2:5.8.0-90.4.ia64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.ppc as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-2:5.8.0-90.4.ppc"
        },
        "product_reference": "perl-2:5.8.0-90.4.ppc",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.s390 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-2:5.8.0-90.4.s390"
        },
        "product_reference": "perl-2:5.8.0-90.4.s390",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.s390x as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-2:5.8.0-90.4.s390x"
        },
        "product_reference": "perl-2:5.8.0-90.4.s390x",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.src as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-2:5.8.0-90.4.src"
        },
        "product_reference": "perl-2:5.8.0-90.4.src",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-2:5.8.0-90.4.x86_64"
        },
        "product_reference": "perl-2:5.8.0-90.4.x86_64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CGI-2:2.89-90.4.i386 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-CGI-2:2.89-90.4.i386"
        },
        "product_reference": "perl-CGI-2:2.89-90.4.i386",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CGI-2:2.89-90.4.ia64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-CGI-2:2.89-90.4.ia64"
        },
        "product_reference": "perl-CGI-2:2.89-90.4.ia64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CGI-2:2.89-90.4.ppc as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-CGI-2:2.89-90.4.ppc"
        },
        "product_reference": "perl-CGI-2:2.89-90.4.ppc",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CGI-2:2.89-90.4.s390 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-CGI-2:2.89-90.4.s390"
        },
        "product_reference": "perl-CGI-2:2.89-90.4.s390",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CGI-2:2.89-90.4.s390x as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-CGI-2:2.89-90.4.s390x"
        },
        "product_reference": "perl-CGI-2:2.89-90.4.s390x",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CGI-2:2.89-90.4.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-CGI-2:2.89-90.4.x86_64"
        },
        "product_reference": "perl-CGI-2:2.89-90.4.x86_64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CPAN-2:1.61-90.4.i386 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-CPAN-2:1.61-90.4.i386"
        },
        "product_reference": "perl-CPAN-2:1.61-90.4.i386",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CPAN-2:1.61-90.4.ia64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-CPAN-2:1.61-90.4.ia64"
        },
        "product_reference": "perl-CPAN-2:1.61-90.4.ia64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CPAN-2:1.61-90.4.ppc as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-CPAN-2:1.61-90.4.ppc"
        },
        "product_reference": "perl-CPAN-2:1.61-90.4.ppc",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CPAN-2:1.61-90.4.s390 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-CPAN-2:1.61-90.4.s390"
        },
        "product_reference": "perl-CPAN-2:1.61-90.4.s390",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CPAN-2:1.61-90.4.s390x as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-CPAN-2:1.61-90.4.s390x"
        },
        "product_reference": "perl-CPAN-2:1.61-90.4.s390x",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CPAN-2:1.61-90.4.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-CPAN-2:1.61-90.4.x86_64"
        },
        "product_reference": "perl-CPAN-2:1.61-90.4.x86_64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-DB_File-2:1.806-90.4.i386 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-DB_File-2:1.806-90.4.i386"
        },
        "product_reference": "perl-DB_File-2:1.806-90.4.i386",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-DB_File-2:1.806-90.4.ia64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-DB_File-2:1.806-90.4.ia64"
        },
        "product_reference": "perl-DB_File-2:1.806-90.4.ia64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-DB_File-2:1.806-90.4.ppc as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-DB_File-2:1.806-90.4.ppc"
        },
        "product_reference": "perl-DB_File-2:1.806-90.4.ppc",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-DB_File-2:1.806-90.4.s390 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-DB_File-2:1.806-90.4.s390"
        },
        "product_reference": "perl-DB_File-2:1.806-90.4.s390",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-DB_File-2:1.806-90.4.s390x as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-DB_File-2:1.806-90.4.s390x"
        },
        "product_reference": "perl-DB_File-2:1.806-90.4.s390x",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-DB_File-2:1.806-90.4.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-DB_File-2:1.806-90.4.x86_64"
        },
        "product_reference": "perl-DB_File-2:1.806-90.4.x86_64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-2:5.8.0-90.4.i386 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-suidperl-2:5.8.0-90.4.i386"
        },
        "product_reference": "perl-suidperl-2:5.8.0-90.4.i386",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-2:5.8.0-90.4.ia64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-suidperl-2:5.8.0-90.4.ia64"
        },
        "product_reference": "perl-suidperl-2:5.8.0-90.4.ia64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-2:5.8.0-90.4.ppc as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-suidperl-2:5.8.0-90.4.ppc"
        },
        "product_reference": "perl-suidperl-2:5.8.0-90.4.ppc",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-2:5.8.0-90.4.s390 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-suidperl-2:5.8.0-90.4.s390"
        },
        "product_reference": "perl-suidperl-2:5.8.0-90.4.s390",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-2:5.8.0-90.4.s390x as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-suidperl-2:5.8.0-90.4.s390x"
        },
        "product_reference": "perl-suidperl-2:5.8.0-90.4.s390x",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-2:5.8.0-90.4.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:perl-suidperl-2:5.8.0-90.4.x86_64"
        },
        "product_reference": "perl-suidperl-2:5.8.0-90.4.x86_64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.i386 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-2:5.8.0-90.4.i386"
        },
        "product_reference": "perl-2:5.8.0-90.4.i386",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.ia64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-2:5.8.0-90.4.ia64"
        },
        "product_reference": "perl-2:5.8.0-90.4.ia64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.ppc as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-2:5.8.0-90.4.ppc"
        },
        "product_reference": "perl-2:5.8.0-90.4.ppc",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.s390 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-2:5.8.0-90.4.s390"
        },
        "product_reference": "perl-2:5.8.0-90.4.s390",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.s390x as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-2:5.8.0-90.4.s390x"
        },
        "product_reference": "perl-2:5.8.0-90.4.s390x",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.src as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-2:5.8.0-90.4.src"
        },
        "product_reference": "perl-2:5.8.0-90.4.src",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.x86_64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-2:5.8.0-90.4.x86_64"
        },
        "product_reference": "perl-2:5.8.0-90.4.x86_64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CGI-2:2.89-90.4.i386 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-CGI-2:2.89-90.4.i386"
        },
        "product_reference": "perl-CGI-2:2.89-90.4.i386",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CGI-2:2.89-90.4.ia64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-CGI-2:2.89-90.4.ia64"
        },
        "product_reference": "perl-CGI-2:2.89-90.4.ia64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CGI-2:2.89-90.4.ppc as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-CGI-2:2.89-90.4.ppc"
        },
        "product_reference": "perl-CGI-2:2.89-90.4.ppc",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CGI-2:2.89-90.4.s390 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-CGI-2:2.89-90.4.s390"
        },
        "product_reference": "perl-CGI-2:2.89-90.4.s390",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CGI-2:2.89-90.4.s390x as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-CGI-2:2.89-90.4.s390x"
        },
        "product_reference": "perl-CGI-2:2.89-90.4.s390x",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CGI-2:2.89-90.4.x86_64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-CGI-2:2.89-90.4.x86_64"
        },
        "product_reference": "perl-CGI-2:2.89-90.4.x86_64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CPAN-2:1.61-90.4.i386 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-CPAN-2:1.61-90.4.i386"
        },
        "product_reference": "perl-CPAN-2:1.61-90.4.i386",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CPAN-2:1.61-90.4.ia64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-CPAN-2:1.61-90.4.ia64"
        },
        "product_reference": "perl-CPAN-2:1.61-90.4.ia64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CPAN-2:1.61-90.4.ppc as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-CPAN-2:1.61-90.4.ppc"
        },
        "product_reference": "perl-CPAN-2:1.61-90.4.ppc",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CPAN-2:1.61-90.4.s390 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-CPAN-2:1.61-90.4.s390"
        },
        "product_reference": "perl-CPAN-2:1.61-90.4.s390",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CPAN-2:1.61-90.4.s390x as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-CPAN-2:1.61-90.4.s390x"
        },
        "product_reference": "perl-CPAN-2:1.61-90.4.s390x",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CPAN-2:1.61-90.4.x86_64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-CPAN-2:1.61-90.4.x86_64"
        },
        "product_reference": "perl-CPAN-2:1.61-90.4.x86_64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-DB_File-2:1.806-90.4.i386 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-DB_File-2:1.806-90.4.i386"
        },
        "product_reference": "perl-DB_File-2:1.806-90.4.i386",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-DB_File-2:1.806-90.4.ia64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-DB_File-2:1.806-90.4.ia64"
        },
        "product_reference": "perl-DB_File-2:1.806-90.4.ia64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-DB_File-2:1.806-90.4.ppc as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-DB_File-2:1.806-90.4.ppc"
        },
        "product_reference": "perl-DB_File-2:1.806-90.4.ppc",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-DB_File-2:1.806-90.4.s390 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-DB_File-2:1.806-90.4.s390"
        },
        "product_reference": "perl-DB_File-2:1.806-90.4.s390",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-DB_File-2:1.806-90.4.s390x as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-DB_File-2:1.806-90.4.s390x"
        },
        "product_reference": "perl-DB_File-2:1.806-90.4.s390x",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-DB_File-2:1.806-90.4.x86_64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-DB_File-2:1.806-90.4.x86_64"
        },
        "product_reference": "perl-DB_File-2:1.806-90.4.x86_64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-2:5.8.0-90.4.i386 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-suidperl-2:5.8.0-90.4.i386"
        },
        "product_reference": "perl-suidperl-2:5.8.0-90.4.i386",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-2:5.8.0-90.4.ia64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-suidperl-2:5.8.0-90.4.ia64"
        },
        "product_reference": "perl-suidperl-2:5.8.0-90.4.ia64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-2:5.8.0-90.4.ppc as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-suidperl-2:5.8.0-90.4.ppc"
        },
        "product_reference": "perl-suidperl-2:5.8.0-90.4.ppc",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-2:5.8.0-90.4.s390 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-suidperl-2:5.8.0-90.4.s390"
        },
        "product_reference": "perl-suidperl-2:5.8.0-90.4.s390",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-2:5.8.0-90.4.s390x as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-suidperl-2:5.8.0-90.4.s390x"
        },
        "product_reference": "perl-suidperl-2:5.8.0-90.4.s390x",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-2:5.8.0-90.4.x86_64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:perl-suidperl-2:5.8.0-90.4.x86_64"
        },
        "product_reference": "perl-suidperl-2:5.8.0-90.4.x86_64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.i386 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-2:5.8.0-90.4.i386"
        },
        "product_reference": "perl-2:5.8.0-90.4.i386",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.ia64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-2:5.8.0-90.4.ia64"
        },
        "product_reference": "perl-2:5.8.0-90.4.ia64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.ppc as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-2:5.8.0-90.4.ppc"
        },
        "product_reference": "perl-2:5.8.0-90.4.ppc",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.s390 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-2:5.8.0-90.4.s390"
        },
        "product_reference": "perl-2:5.8.0-90.4.s390",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.s390x as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-2:5.8.0-90.4.s390x"
        },
        "product_reference": "perl-2:5.8.0-90.4.s390x",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.src as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-2:5.8.0-90.4.src"
        },
        "product_reference": "perl-2:5.8.0-90.4.src",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-2:5.8.0-90.4.x86_64"
        },
        "product_reference": "perl-2:5.8.0-90.4.x86_64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CGI-2:2.89-90.4.i386 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-CGI-2:2.89-90.4.i386"
        },
        "product_reference": "perl-CGI-2:2.89-90.4.i386",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CGI-2:2.89-90.4.ia64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-CGI-2:2.89-90.4.ia64"
        },
        "product_reference": "perl-CGI-2:2.89-90.4.ia64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CGI-2:2.89-90.4.ppc as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-CGI-2:2.89-90.4.ppc"
        },
        "product_reference": "perl-CGI-2:2.89-90.4.ppc",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CGI-2:2.89-90.4.s390 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-CGI-2:2.89-90.4.s390"
        },
        "product_reference": "perl-CGI-2:2.89-90.4.s390",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CGI-2:2.89-90.4.s390x as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-CGI-2:2.89-90.4.s390x"
        },
        "product_reference": "perl-CGI-2:2.89-90.4.s390x",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CGI-2:2.89-90.4.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-CGI-2:2.89-90.4.x86_64"
        },
        "product_reference": "perl-CGI-2:2.89-90.4.x86_64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CPAN-2:1.61-90.4.i386 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-CPAN-2:1.61-90.4.i386"
        },
        "product_reference": "perl-CPAN-2:1.61-90.4.i386",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CPAN-2:1.61-90.4.ia64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-CPAN-2:1.61-90.4.ia64"
        },
        "product_reference": "perl-CPAN-2:1.61-90.4.ia64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CPAN-2:1.61-90.4.ppc as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-CPAN-2:1.61-90.4.ppc"
        },
        "product_reference": "perl-CPAN-2:1.61-90.4.ppc",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CPAN-2:1.61-90.4.s390 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-CPAN-2:1.61-90.4.s390"
        },
        "product_reference": "perl-CPAN-2:1.61-90.4.s390",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CPAN-2:1.61-90.4.s390x as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-CPAN-2:1.61-90.4.s390x"
        },
        "product_reference": "perl-CPAN-2:1.61-90.4.s390x",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CPAN-2:1.61-90.4.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-CPAN-2:1.61-90.4.x86_64"
        },
        "product_reference": "perl-CPAN-2:1.61-90.4.x86_64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-DB_File-2:1.806-90.4.i386 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-DB_File-2:1.806-90.4.i386"
        },
        "product_reference": "perl-DB_File-2:1.806-90.4.i386",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-DB_File-2:1.806-90.4.ia64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-DB_File-2:1.806-90.4.ia64"
        },
        "product_reference": "perl-DB_File-2:1.806-90.4.ia64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-DB_File-2:1.806-90.4.ppc as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-DB_File-2:1.806-90.4.ppc"
        },
        "product_reference": "perl-DB_File-2:1.806-90.4.ppc",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-DB_File-2:1.806-90.4.s390 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-DB_File-2:1.806-90.4.s390"
        },
        "product_reference": "perl-DB_File-2:1.806-90.4.s390",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-DB_File-2:1.806-90.4.s390x as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-DB_File-2:1.806-90.4.s390x"
        },
        "product_reference": "perl-DB_File-2:1.806-90.4.s390x",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-DB_File-2:1.806-90.4.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-DB_File-2:1.806-90.4.x86_64"
        },
        "product_reference": "perl-DB_File-2:1.806-90.4.x86_64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-2:5.8.0-90.4.i386 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-suidperl-2:5.8.0-90.4.i386"
        },
        "product_reference": "perl-suidperl-2:5.8.0-90.4.i386",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-2:5.8.0-90.4.ia64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-suidperl-2:5.8.0-90.4.ia64"
        },
        "product_reference": "perl-suidperl-2:5.8.0-90.4.ia64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-2:5.8.0-90.4.ppc as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-suidperl-2:5.8.0-90.4.ppc"
        },
        "product_reference": "perl-suidperl-2:5.8.0-90.4.ppc",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-2:5.8.0-90.4.s390 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-suidperl-2:5.8.0-90.4.s390"
        },
        "product_reference": "perl-suidperl-2:5.8.0-90.4.s390",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-2:5.8.0-90.4.s390x as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-suidperl-2:5.8.0-90.4.s390x"
        },
        "product_reference": "perl-suidperl-2:5.8.0-90.4.s390x",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-2:5.8.0-90.4.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:perl-suidperl-2:5.8.0-90.4.x86_64"
        },
        "product_reference": "perl-suidperl-2:5.8.0-90.4.x86_64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.i386 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-2:5.8.0-90.4.i386"
        },
        "product_reference": "perl-2:5.8.0-90.4.i386",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.ia64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-2:5.8.0-90.4.ia64"
        },
        "product_reference": "perl-2:5.8.0-90.4.ia64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.ppc as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-2:5.8.0-90.4.ppc"
        },
        "product_reference": "perl-2:5.8.0-90.4.ppc",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.s390 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-2:5.8.0-90.4.s390"
        },
        "product_reference": "perl-2:5.8.0-90.4.s390",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.s390x as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-2:5.8.0-90.4.s390x"
        },
        "product_reference": "perl-2:5.8.0-90.4.s390x",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.src as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-2:5.8.0-90.4.src"
        },
        "product_reference": "perl-2:5.8.0-90.4.src",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-2:5.8.0-90.4.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-2:5.8.0-90.4.x86_64"
        },
        "product_reference": "perl-2:5.8.0-90.4.x86_64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CGI-2:2.89-90.4.i386 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-CGI-2:2.89-90.4.i386"
        },
        "product_reference": "perl-CGI-2:2.89-90.4.i386",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CGI-2:2.89-90.4.ia64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-CGI-2:2.89-90.4.ia64"
        },
        "product_reference": "perl-CGI-2:2.89-90.4.ia64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CGI-2:2.89-90.4.ppc as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-CGI-2:2.89-90.4.ppc"
        },
        "product_reference": "perl-CGI-2:2.89-90.4.ppc",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CGI-2:2.89-90.4.s390 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-CGI-2:2.89-90.4.s390"
        },
        "product_reference": "perl-CGI-2:2.89-90.4.s390",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CGI-2:2.89-90.4.s390x as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-CGI-2:2.89-90.4.s390x"
        },
        "product_reference": "perl-CGI-2:2.89-90.4.s390x",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CGI-2:2.89-90.4.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-CGI-2:2.89-90.4.x86_64"
        },
        "product_reference": "perl-CGI-2:2.89-90.4.x86_64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CPAN-2:1.61-90.4.i386 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-CPAN-2:1.61-90.4.i386"
        },
        "product_reference": "perl-CPAN-2:1.61-90.4.i386",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CPAN-2:1.61-90.4.ia64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-CPAN-2:1.61-90.4.ia64"
        },
        "product_reference": "perl-CPAN-2:1.61-90.4.ia64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CPAN-2:1.61-90.4.ppc as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-CPAN-2:1.61-90.4.ppc"
        },
        "product_reference": "perl-CPAN-2:1.61-90.4.ppc",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CPAN-2:1.61-90.4.s390 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-CPAN-2:1.61-90.4.s390"
        },
        "product_reference": "perl-CPAN-2:1.61-90.4.s390",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CPAN-2:1.61-90.4.s390x as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-CPAN-2:1.61-90.4.s390x"
        },
        "product_reference": "perl-CPAN-2:1.61-90.4.s390x",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-CPAN-2:1.61-90.4.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-CPAN-2:1.61-90.4.x86_64"
        },
        "product_reference": "perl-CPAN-2:1.61-90.4.x86_64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-DB_File-2:1.806-90.4.i386 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-DB_File-2:1.806-90.4.i386"
        },
        "product_reference": "perl-DB_File-2:1.806-90.4.i386",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-DB_File-2:1.806-90.4.ia64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-DB_File-2:1.806-90.4.ia64"
        },
        "product_reference": "perl-DB_File-2:1.806-90.4.ia64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-DB_File-2:1.806-90.4.ppc as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-DB_File-2:1.806-90.4.ppc"
        },
        "product_reference": "perl-DB_File-2:1.806-90.4.ppc",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-DB_File-2:1.806-90.4.s390 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-DB_File-2:1.806-90.4.s390"
        },
        "product_reference": "perl-DB_File-2:1.806-90.4.s390",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-DB_File-2:1.806-90.4.s390x as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-DB_File-2:1.806-90.4.s390x"
        },
        "product_reference": "perl-DB_File-2:1.806-90.4.s390x",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-DB_File-2:1.806-90.4.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-DB_File-2:1.806-90.4.x86_64"
        },
        "product_reference": "perl-DB_File-2:1.806-90.4.x86_64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-2:5.8.0-90.4.i386 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-suidperl-2:5.8.0-90.4.i386"
        },
        "product_reference": "perl-suidperl-2:5.8.0-90.4.i386",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-2:5.8.0-90.4.ia64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-suidperl-2:5.8.0-90.4.ia64"
        },
        "product_reference": "perl-suidperl-2:5.8.0-90.4.ia64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-2:5.8.0-90.4.ppc as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-suidperl-2:5.8.0-90.4.ppc"
        },
        "product_reference": "perl-suidperl-2:5.8.0-90.4.ppc",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-2:5.8.0-90.4.s390 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-suidperl-2:5.8.0-90.4.s390"
        },
        "product_reference": "perl-suidperl-2:5.8.0-90.4.s390",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-2:5.8.0-90.4.s390x as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-suidperl-2:5.8.0-90.4.s390x"
        },
        "product_reference": "perl-suidperl-2:5.8.0-90.4.s390x",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-2:5.8.0-90.4.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:perl-suidperl-2:5.8.0-90.4.x86_64"
        },
        "product_reference": "perl-suidperl-2:5.8.0-90.4.x86_64",
        "relates_to_product_reference": "3WS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2004-0976",
      "discovery_date": "2004-09-10T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1617339"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Multiple scripts in the perl package in Trustix Secure Linux 1.5 through 2.1 and other operating systems allows local users to overwrite files via a symlink attack on temporary files.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat is aware of this issue and is tracking it via the following bug:\nhttps://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=140058\n\nThe Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw.  More information regarding issue severity can be found here:\nhttp://www.redhat.com/security/updates/classification/\n\nRed Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.",
          "title": "Statement"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS:perl-2:5.8.0-90.4.i386",
          "3AS:perl-2:5.8.0-90.4.ia64",
          "3AS:perl-2:5.8.0-90.4.ppc",
          "3AS:perl-2:5.8.0-90.4.s390",
          "3AS:perl-2:5.8.0-90.4.s390x",
          "3AS:perl-2:5.8.0-90.4.src",
          "3AS:perl-2:5.8.0-90.4.x86_64",
          "3AS:perl-CGI-2:2.89-90.4.i386",
          "3AS:perl-CGI-2:2.89-90.4.ia64",
          "3AS:perl-CGI-2:2.89-90.4.ppc",
          "3AS:perl-CGI-2:2.89-90.4.s390",
          "3AS:perl-CGI-2:2.89-90.4.s390x",
          "3AS:perl-CGI-2:2.89-90.4.x86_64",
          "3AS:perl-CPAN-2:1.61-90.4.i386",
          "3AS:perl-CPAN-2:1.61-90.4.ia64",
          "3AS:perl-CPAN-2:1.61-90.4.ppc",
          "3AS:perl-CPAN-2:1.61-90.4.s390",
          "3AS:perl-CPAN-2:1.61-90.4.s390x",
          "3AS:perl-CPAN-2:1.61-90.4.x86_64",
          "3AS:perl-DB_File-2:1.806-90.4.i386",
          "3AS:perl-DB_File-2:1.806-90.4.ia64",
          "3AS:perl-DB_File-2:1.806-90.4.ppc",
          "3AS:perl-DB_File-2:1.806-90.4.s390",
          "3AS:perl-DB_File-2:1.806-90.4.s390x",
          "3AS:perl-DB_File-2:1.806-90.4.x86_64",
          "3AS:perl-suidperl-2:5.8.0-90.4.i386",
          "3AS:perl-suidperl-2:5.8.0-90.4.ia64",
          "3AS:perl-suidperl-2:5.8.0-90.4.ppc",
          "3AS:perl-suidperl-2:5.8.0-90.4.s390",
          "3AS:perl-suidperl-2:5.8.0-90.4.s390x",
          "3AS:perl-suidperl-2:5.8.0-90.4.x86_64",
          "3Desktop:perl-2:5.8.0-90.4.i386",
          "3Desktop:perl-2:5.8.0-90.4.ia64",
          "3Desktop:perl-2:5.8.0-90.4.ppc",
          "3Desktop:perl-2:5.8.0-90.4.s390",
          "3Desktop:perl-2:5.8.0-90.4.s390x",
          "3Desktop:perl-2:5.8.0-90.4.src",
          "3Desktop:perl-2:5.8.0-90.4.x86_64",
          "3Desktop:perl-CGI-2:2.89-90.4.i386",
          "3Desktop:perl-CGI-2:2.89-90.4.ia64",
          "3Desktop:perl-CGI-2:2.89-90.4.ppc",
          "3Desktop:perl-CGI-2:2.89-90.4.s390",
          "3Desktop:perl-CGI-2:2.89-90.4.s390x",
          "3Desktop:perl-CGI-2:2.89-90.4.x86_64",
          "3Desktop:perl-CPAN-2:1.61-90.4.i386",
          "3Desktop:perl-CPAN-2:1.61-90.4.ia64",
          "3Desktop:perl-CPAN-2:1.61-90.4.ppc",
          "3Desktop:perl-CPAN-2:1.61-90.4.s390",
          "3Desktop:perl-CPAN-2:1.61-90.4.s390x",
          "3Desktop:perl-CPAN-2:1.61-90.4.x86_64",
          "3Desktop:perl-DB_File-2:1.806-90.4.i386",
          "3Desktop:perl-DB_File-2:1.806-90.4.ia64",
          "3Desktop:perl-DB_File-2:1.806-90.4.ppc",
          "3Desktop:perl-DB_File-2:1.806-90.4.s390",
          "3Desktop:perl-DB_File-2:1.806-90.4.s390x",
          "3Desktop:perl-DB_File-2:1.806-90.4.x86_64",
          "3Desktop:perl-suidperl-2:5.8.0-90.4.i386",
          "3Desktop:perl-suidperl-2:5.8.0-90.4.ia64",
          "3Desktop:perl-suidperl-2:5.8.0-90.4.ppc",
          "3Desktop:perl-suidperl-2:5.8.0-90.4.s390",
          "3Desktop:perl-suidperl-2:5.8.0-90.4.s390x",
          "3Desktop:perl-suidperl-2:5.8.0-90.4.x86_64",
          "3ES:perl-2:5.8.0-90.4.i386",
          "3ES:perl-2:5.8.0-90.4.ia64",
          "3ES:perl-2:5.8.0-90.4.ppc",
          "3ES:perl-2:5.8.0-90.4.s390",
          "3ES:perl-2:5.8.0-90.4.s390x",
          "3ES:perl-2:5.8.0-90.4.src",
          "3ES:perl-2:5.8.0-90.4.x86_64",
          "3ES:perl-CGI-2:2.89-90.4.i386",
          "3ES:perl-CGI-2:2.89-90.4.ia64",
          "3ES:perl-CGI-2:2.89-90.4.ppc",
          "3ES:perl-CGI-2:2.89-90.4.s390",
          "3ES:perl-CGI-2:2.89-90.4.s390x",
          "3ES:perl-CGI-2:2.89-90.4.x86_64",
          "3ES:perl-CPAN-2:1.61-90.4.i386",
          "3ES:perl-CPAN-2:1.61-90.4.ia64",
          "3ES:perl-CPAN-2:1.61-90.4.ppc",
          "3ES:perl-CPAN-2:1.61-90.4.s390",
          "3ES:perl-CPAN-2:1.61-90.4.s390x",
          "3ES:perl-CPAN-2:1.61-90.4.x86_64",
          "3ES:perl-DB_File-2:1.806-90.4.i386",
          "3ES:perl-DB_File-2:1.806-90.4.ia64",
          "3ES:perl-DB_File-2:1.806-90.4.ppc",
          "3ES:perl-DB_File-2:1.806-90.4.s390",
          "3ES:perl-DB_File-2:1.806-90.4.s390x",
          "3ES:perl-DB_File-2:1.806-90.4.x86_64",
          "3ES:perl-suidperl-2:5.8.0-90.4.i386",
          "3ES:perl-suidperl-2:5.8.0-90.4.ia64",
          "3ES:perl-suidperl-2:5.8.0-90.4.ppc",
          "3ES:perl-suidperl-2:5.8.0-90.4.s390",
          "3ES:perl-suidperl-2:5.8.0-90.4.s390x",
          "3ES:perl-suidperl-2:5.8.0-90.4.x86_64",
          "3WS:perl-2:5.8.0-90.4.i386",
          "3WS:perl-2:5.8.0-90.4.ia64",
          "3WS:perl-2:5.8.0-90.4.ppc",
          "3WS:perl-2:5.8.0-90.4.s390",
          "3WS:perl-2:5.8.0-90.4.s390x",
          "3WS:perl-2:5.8.0-90.4.src",
          "3WS:perl-2:5.8.0-90.4.x86_64",
          "3WS:perl-CGI-2:2.89-90.4.i386",
          "3WS:perl-CGI-2:2.89-90.4.ia64",
          "3WS:perl-CGI-2:2.89-90.4.ppc",
          "3WS:perl-CGI-2:2.89-90.4.s390",
          "3WS:perl-CGI-2:2.89-90.4.s390x",
          "3WS:perl-CGI-2:2.89-90.4.x86_64",
          "3WS:perl-CPAN-2:1.61-90.4.i386",
          "3WS:perl-CPAN-2:1.61-90.4.ia64",
          "3WS:perl-CPAN-2:1.61-90.4.ppc",
          "3WS:perl-CPAN-2:1.61-90.4.s390",
          "3WS:perl-CPAN-2:1.61-90.4.s390x",
          "3WS:perl-CPAN-2:1.61-90.4.x86_64",
          "3WS:perl-DB_File-2:1.806-90.4.i386",
          "3WS:perl-DB_File-2:1.806-90.4.ia64",
          "3WS:perl-DB_File-2:1.806-90.4.ppc",
          "3WS:perl-DB_File-2:1.806-90.4.s390",
          "3WS:perl-DB_File-2:1.806-90.4.s390x",
          "3WS:perl-DB_File-2:1.806-90.4.x86_64",
          "3WS:perl-suidperl-2:5.8.0-90.4.i386",
          "3WS:perl-suidperl-2:5.8.0-90.4.ia64",
          "3WS:perl-suidperl-2:5.8.0-90.4.ppc",
          "3WS:perl-suidperl-2:5.8.0-90.4.s390",
          "3WS:perl-suidperl-2:5.8.0-90.4.s390x",
          "3WS:perl-suidperl-2:5.8.0-90.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2004-0976"
        },
        {
          "category": "external",
          "summary": "RHBZ#1617339",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617339"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2004-0976",
          "url": "https://www.cve.org/CVERecord?id=CVE-2004-0976"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2004-0976",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0976"
        }
      ],
      "release_date": "2004-09-30T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2005-12-20T15:00:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network.  To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "3AS:perl-2:5.8.0-90.4.i386",
            "3AS:perl-2:5.8.0-90.4.ia64",
            "3AS:perl-2:5.8.0-90.4.ppc",
            "3AS:perl-2:5.8.0-90.4.s390",
            "3AS:perl-2:5.8.0-90.4.s390x",
            "3AS:perl-2:5.8.0-90.4.src",
            "3AS:perl-2:5.8.0-90.4.x86_64",
            "3AS:perl-CGI-2:2.89-90.4.i386",
            "3AS:perl-CGI-2:2.89-90.4.ia64",
            "3AS:perl-CGI-2:2.89-90.4.ppc",
            "3AS:perl-CGI-2:2.89-90.4.s390",
            "3AS:perl-CGI-2:2.89-90.4.s390x",
            "3AS:perl-CGI-2:2.89-90.4.x86_64",
            "3AS:perl-CPAN-2:1.61-90.4.i386",
            "3AS:perl-CPAN-2:1.61-90.4.ia64",
            "3AS:perl-CPAN-2:1.61-90.4.ppc",
            "3AS:perl-CPAN-2:1.61-90.4.s390",
            "3AS:perl-CPAN-2:1.61-90.4.s390x",
            "3AS:perl-CPAN-2:1.61-90.4.x86_64",
            "3AS:perl-DB_File-2:1.806-90.4.i386",
            "3AS:perl-DB_File-2:1.806-90.4.ia64",
            "3AS:perl-DB_File-2:1.806-90.4.ppc",
            "3AS:perl-DB_File-2:1.806-90.4.s390",
            "3AS:perl-DB_File-2:1.806-90.4.s390x",
            "3AS:perl-DB_File-2:1.806-90.4.x86_64",
            "3AS:perl-suidperl-2:5.8.0-90.4.i386",
            "3AS:perl-suidperl-2:5.8.0-90.4.ia64",
            "3AS:perl-suidperl-2:5.8.0-90.4.ppc",
            "3AS:perl-suidperl-2:5.8.0-90.4.s390",
            "3AS:perl-suidperl-2:5.8.0-90.4.s390x",
            "3AS:perl-suidperl-2:5.8.0-90.4.x86_64",
            "3Desktop:perl-2:5.8.0-90.4.i386",
            "3Desktop:perl-2:5.8.0-90.4.ia64",
            "3Desktop:perl-2:5.8.0-90.4.ppc",
            "3Desktop:perl-2:5.8.0-90.4.s390",
            "3Desktop:perl-2:5.8.0-90.4.s390x",
            "3Desktop:perl-2:5.8.0-90.4.src",
            "3Desktop:perl-2:5.8.0-90.4.x86_64",
            "3Desktop:perl-CGI-2:2.89-90.4.i386",
            "3Desktop:perl-CGI-2:2.89-90.4.ia64",
            "3Desktop:perl-CGI-2:2.89-90.4.ppc",
            "3Desktop:perl-CGI-2:2.89-90.4.s390",
            "3Desktop:perl-CGI-2:2.89-90.4.s390x",
            "3Desktop:perl-CGI-2:2.89-90.4.x86_64",
            "3Desktop:perl-CPAN-2:1.61-90.4.i386",
            "3Desktop:perl-CPAN-2:1.61-90.4.ia64",
            "3Desktop:perl-CPAN-2:1.61-90.4.ppc",
            "3Desktop:perl-CPAN-2:1.61-90.4.s390",
            "3Desktop:perl-CPAN-2:1.61-90.4.s390x",
            "3Desktop:perl-CPAN-2:1.61-90.4.x86_64",
            "3Desktop:perl-DB_File-2:1.806-90.4.i386",
            "3Desktop:perl-DB_File-2:1.806-90.4.ia64",
            "3Desktop:perl-DB_File-2:1.806-90.4.ppc",
            "3Desktop:perl-DB_File-2:1.806-90.4.s390",
            "3Desktop:perl-DB_File-2:1.806-90.4.s390x",
            "3Desktop:perl-DB_File-2:1.806-90.4.x86_64",
            "3Desktop:perl-suidperl-2:5.8.0-90.4.i386",
            "3Desktop:perl-suidperl-2:5.8.0-90.4.ia64",
            "3Desktop:perl-suidperl-2:5.8.0-90.4.ppc",
            "3Desktop:perl-suidperl-2:5.8.0-90.4.s390",
            "3Desktop:perl-suidperl-2:5.8.0-90.4.s390x",
            "3Desktop:perl-suidperl-2:5.8.0-90.4.x86_64",
            "3ES:perl-2:5.8.0-90.4.i386",
            "3ES:perl-2:5.8.0-90.4.ia64",
            "3ES:perl-2:5.8.0-90.4.ppc",
            "3ES:perl-2:5.8.0-90.4.s390",
            "3ES:perl-2:5.8.0-90.4.s390x",
            "3ES:perl-2:5.8.0-90.4.src",
            "3ES:perl-2:5.8.0-90.4.x86_64",
            "3ES:perl-CGI-2:2.89-90.4.i386",
            "3ES:perl-CGI-2:2.89-90.4.ia64",
            "3ES:perl-CGI-2:2.89-90.4.ppc",
            "3ES:perl-CGI-2:2.89-90.4.s390",
            "3ES:perl-CGI-2:2.89-90.4.s390x",
            "3ES:perl-CGI-2:2.89-90.4.x86_64",
            "3ES:perl-CPAN-2:1.61-90.4.i386",
            "3ES:perl-CPAN-2:1.61-90.4.ia64",
            "3ES:perl-CPAN-2:1.61-90.4.ppc",
            "3ES:perl-CPAN-2:1.61-90.4.s390",
            "3ES:perl-CPAN-2:1.61-90.4.s390x",
            "3ES:perl-CPAN-2:1.61-90.4.x86_64",
            "3ES:perl-DB_File-2:1.806-90.4.i386",
            "3ES:perl-DB_File-2:1.806-90.4.ia64",
            "3ES:perl-DB_File-2:1.806-90.4.ppc",
            "3ES:perl-DB_File-2:1.806-90.4.s390",
            "3ES:perl-DB_File-2:1.806-90.4.s390x",
            "3ES:perl-DB_File-2:1.806-90.4.x86_64",
            "3ES:perl-suidperl-2:5.8.0-90.4.i386",
            "3ES:perl-suidperl-2:5.8.0-90.4.ia64",
            "3ES:perl-suidperl-2:5.8.0-90.4.ppc",
            "3ES:perl-suidperl-2:5.8.0-90.4.s390",
            "3ES:perl-suidperl-2:5.8.0-90.4.s390x",
            "3ES:perl-suidperl-2:5.8.0-90.4.x86_64",
            "3WS:perl-2:5.8.0-90.4.i386",
            "3WS:perl-2:5.8.0-90.4.ia64",
            "3WS:perl-2:5.8.0-90.4.ppc",
            "3WS:perl-2:5.8.0-90.4.s390",
            "3WS:perl-2:5.8.0-90.4.s390x",
            "3WS:perl-2:5.8.0-90.4.src",
            "3WS:perl-2:5.8.0-90.4.x86_64",
            "3WS:perl-CGI-2:2.89-90.4.i386",
            "3WS:perl-CGI-2:2.89-90.4.ia64",
            "3WS:perl-CGI-2:2.89-90.4.ppc",
            "3WS:perl-CGI-2:2.89-90.4.s390",
            "3WS:perl-CGI-2:2.89-90.4.s390x",
            "3WS:perl-CGI-2:2.89-90.4.x86_64",
            "3WS:perl-CPAN-2:1.61-90.4.i386",
            "3WS:perl-CPAN-2:1.61-90.4.ia64",
            "3WS:perl-CPAN-2:1.61-90.4.ppc",
            "3WS:perl-CPAN-2:1.61-90.4.s390",
            "3WS:perl-CPAN-2:1.61-90.4.s390x",
            "3WS:perl-CPAN-2:1.61-90.4.x86_64",
            "3WS:perl-DB_File-2:1.806-90.4.i386",
            "3WS:perl-DB_File-2:1.806-90.4.ia64",
            "3WS:perl-DB_File-2:1.806-90.4.ppc",
            "3WS:perl-DB_File-2:1.806-90.4.s390",
            "3WS:perl-DB_File-2:1.806-90.4.s390x",
            "3WS:perl-DB_File-2:1.806-90.4.x86_64",
            "3WS:perl-suidperl-2:5.8.0-90.4.i386",
            "3WS:perl-suidperl-2:5.8.0-90.4.ia64",
            "3WS:perl-suidperl-2:5.8.0-90.4.ppc",
            "3WS:perl-suidperl-2:5.8.0-90.4.s390",
            "3WS:perl-suidperl-2:5.8.0-90.4.s390x",
            "3WS:perl-suidperl-2:5.8.0-90.4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2005:881"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "security flaw"
    },
    {
      "cve": "CVE-2005-0448",
      "discovery_date": "2005-03-14T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1617524"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Race condition in the rmtree function in File::Path.pm in Perl before 5.8.4 allows local users to create arbitrary setuid binaries in the tree being deleted, a different vulnerability than CVE-2004-0452.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS:perl-2:5.8.0-90.4.i386",
          "3AS:perl-2:5.8.0-90.4.ia64",
          "3AS:perl-2:5.8.0-90.4.ppc",
          "3AS:perl-2:5.8.0-90.4.s390",
          "3AS:perl-2:5.8.0-90.4.s390x",
          "3AS:perl-2:5.8.0-90.4.src",
          "3AS:perl-2:5.8.0-90.4.x86_64",
          "3AS:perl-CGI-2:2.89-90.4.i386",
          "3AS:perl-CGI-2:2.89-90.4.ia64",
          "3AS:perl-CGI-2:2.89-90.4.ppc",
          "3AS:perl-CGI-2:2.89-90.4.s390",
          "3AS:perl-CGI-2:2.89-90.4.s390x",
          "3AS:perl-CGI-2:2.89-90.4.x86_64",
          "3AS:perl-CPAN-2:1.61-90.4.i386",
          "3AS:perl-CPAN-2:1.61-90.4.ia64",
          "3AS:perl-CPAN-2:1.61-90.4.ppc",
          "3AS:perl-CPAN-2:1.61-90.4.s390",
          "3AS:perl-CPAN-2:1.61-90.4.s390x",
          "3AS:perl-CPAN-2:1.61-90.4.x86_64",
          "3AS:perl-DB_File-2:1.806-90.4.i386",
          "3AS:perl-DB_File-2:1.806-90.4.ia64",
          "3AS:perl-DB_File-2:1.806-90.4.ppc",
          "3AS:perl-DB_File-2:1.806-90.4.s390",
          "3AS:perl-DB_File-2:1.806-90.4.s390x",
          "3AS:perl-DB_File-2:1.806-90.4.x86_64",
          "3AS:perl-suidperl-2:5.8.0-90.4.i386",
          "3AS:perl-suidperl-2:5.8.0-90.4.ia64",
          "3AS:perl-suidperl-2:5.8.0-90.4.ppc",
          "3AS:perl-suidperl-2:5.8.0-90.4.s390",
          "3AS:perl-suidperl-2:5.8.0-90.4.s390x",
          "3AS:perl-suidperl-2:5.8.0-90.4.x86_64",
          "3Desktop:perl-2:5.8.0-90.4.i386",
          "3Desktop:perl-2:5.8.0-90.4.ia64",
          "3Desktop:perl-2:5.8.0-90.4.ppc",
          "3Desktop:perl-2:5.8.0-90.4.s390",
          "3Desktop:perl-2:5.8.0-90.4.s390x",
          "3Desktop:perl-2:5.8.0-90.4.src",
          "3Desktop:perl-2:5.8.0-90.4.x86_64",
          "3Desktop:perl-CGI-2:2.89-90.4.i386",
          "3Desktop:perl-CGI-2:2.89-90.4.ia64",
          "3Desktop:perl-CGI-2:2.89-90.4.ppc",
          "3Desktop:perl-CGI-2:2.89-90.4.s390",
          "3Desktop:perl-CGI-2:2.89-90.4.s390x",
          "3Desktop:perl-CGI-2:2.89-90.4.x86_64",
          "3Desktop:perl-CPAN-2:1.61-90.4.i386",
          "3Desktop:perl-CPAN-2:1.61-90.4.ia64",
          "3Desktop:perl-CPAN-2:1.61-90.4.ppc",
          "3Desktop:perl-CPAN-2:1.61-90.4.s390",
          "3Desktop:perl-CPAN-2:1.61-90.4.s390x",
          "3Desktop:perl-CPAN-2:1.61-90.4.x86_64",
          "3Desktop:perl-DB_File-2:1.806-90.4.i386",
          "3Desktop:perl-DB_File-2:1.806-90.4.ia64",
          "3Desktop:perl-DB_File-2:1.806-90.4.ppc",
          "3Desktop:perl-DB_File-2:1.806-90.4.s390",
          "3Desktop:perl-DB_File-2:1.806-90.4.s390x",
          "3Desktop:perl-DB_File-2:1.806-90.4.x86_64",
          "3Desktop:perl-suidperl-2:5.8.0-90.4.i386",
          "3Desktop:perl-suidperl-2:5.8.0-90.4.ia64",
          "3Desktop:perl-suidperl-2:5.8.0-90.4.ppc",
          "3Desktop:perl-suidperl-2:5.8.0-90.4.s390",
          "3Desktop:perl-suidperl-2:5.8.0-90.4.s390x",
          "3Desktop:perl-suidperl-2:5.8.0-90.4.x86_64",
          "3ES:perl-2:5.8.0-90.4.i386",
          "3ES:perl-2:5.8.0-90.4.ia64",
          "3ES:perl-2:5.8.0-90.4.ppc",
          "3ES:perl-2:5.8.0-90.4.s390",
          "3ES:perl-2:5.8.0-90.4.s390x",
          "3ES:perl-2:5.8.0-90.4.src",
          "3ES:perl-2:5.8.0-90.4.x86_64",
          "3ES:perl-CGI-2:2.89-90.4.i386",
          "3ES:perl-CGI-2:2.89-90.4.ia64",
          "3ES:perl-CGI-2:2.89-90.4.ppc",
          "3ES:perl-CGI-2:2.89-90.4.s390",
          "3ES:perl-CGI-2:2.89-90.4.s390x",
          "3ES:perl-CGI-2:2.89-90.4.x86_64",
          "3ES:perl-CPAN-2:1.61-90.4.i386",
          "3ES:perl-CPAN-2:1.61-90.4.ia64",
          "3ES:perl-CPAN-2:1.61-90.4.ppc",
          "3ES:perl-CPAN-2:1.61-90.4.s390",
          "3ES:perl-CPAN-2:1.61-90.4.s390x",
          "3ES:perl-CPAN-2:1.61-90.4.x86_64",
          "3ES:perl-DB_File-2:1.806-90.4.i386",
          "3ES:perl-DB_File-2:1.806-90.4.ia64",
          "3ES:perl-DB_File-2:1.806-90.4.ppc",
          "3ES:perl-DB_File-2:1.806-90.4.s390",
          "3ES:perl-DB_File-2:1.806-90.4.s390x",
          "3ES:perl-DB_File-2:1.806-90.4.x86_64",
          "3ES:perl-suidperl-2:5.8.0-90.4.i386",
          "3ES:perl-suidperl-2:5.8.0-90.4.ia64",
          "3ES:perl-suidperl-2:5.8.0-90.4.ppc",
          "3ES:perl-suidperl-2:5.8.0-90.4.s390",
          "3ES:perl-suidperl-2:5.8.0-90.4.s390x",
          "3ES:perl-suidperl-2:5.8.0-90.4.x86_64",
          "3WS:perl-2:5.8.0-90.4.i386",
          "3WS:perl-2:5.8.0-90.4.ia64",
          "3WS:perl-2:5.8.0-90.4.ppc",
          "3WS:perl-2:5.8.0-90.4.s390",
          "3WS:perl-2:5.8.0-90.4.s390x",
          "3WS:perl-2:5.8.0-90.4.src",
          "3WS:perl-2:5.8.0-90.4.x86_64",
          "3WS:perl-CGI-2:2.89-90.4.i386",
          "3WS:perl-CGI-2:2.89-90.4.ia64",
          "3WS:perl-CGI-2:2.89-90.4.ppc",
          "3WS:perl-CGI-2:2.89-90.4.s390",
          "3WS:perl-CGI-2:2.89-90.4.s390x",
          "3WS:perl-CGI-2:2.89-90.4.x86_64",
          "3WS:perl-CPAN-2:1.61-90.4.i386",
          "3WS:perl-CPAN-2:1.61-90.4.ia64",
          "3WS:perl-CPAN-2:1.61-90.4.ppc",
          "3WS:perl-CPAN-2:1.61-90.4.s390",
          "3WS:perl-CPAN-2:1.61-90.4.s390x",
          "3WS:perl-CPAN-2:1.61-90.4.x86_64",
          "3WS:perl-DB_File-2:1.806-90.4.i386",
          "3WS:perl-DB_File-2:1.806-90.4.ia64",
          "3WS:perl-DB_File-2:1.806-90.4.ppc",
          "3WS:perl-DB_File-2:1.806-90.4.s390",
          "3WS:perl-DB_File-2:1.806-90.4.s390x",
          "3WS:perl-DB_File-2:1.806-90.4.x86_64",
          "3WS:perl-suidperl-2:5.8.0-90.4.i386",
          "3WS:perl-suidperl-2:5.8.0-90.4.ia64",
          "3WS:perl-suidperl-2:5.8.0-90.4.ppc",
          "3WS:perl-suidperl-2:5.8.0-90.4.s390",
          "3WS:perl-suidperl-2:5.8.0-90.4.s390x",
          "3WS:perl-suidperl-2:5.8.0-90.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2005-0448"
        },
        {
          "category": "external",
          "summary": "RHBZ#1617524",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617524"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2005-0448",
          "url": "https://www.cve.org/CVERecord?id=CVE-2005-0448"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2005-0448",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-0448"
        }
      ],
      "release_date": "2005-03-09T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2005-12-20T15:00:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network.  To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "3AS:perl-2:5.8.0-90.4.i386",
            "3AS:perl-2:5.8.0-90.4.ia64",
            "3AS:perl-2:5.8.0-90.4.ppc",
            "3AS:perl-2:5.8.0-90.4.s390",
            "3AS:perl-2:5.8.0-90.4.s390x",
            "3AS:perl-2:5.8.0-90.4.src",
            "3AS:perl-2:5.8.0-90.4.x86_64",
            "3AS:perl-CGI-2:2.89-90.4.i386",
            "3AS:perl-CGI-2:2.89-90.4.ia64",
            "3AS:perl-CGI-2:2.89-90.4.ppc",
            "3AS:perl-CGI-2:2.89-90.4.s390",
            "3AS:perl-CGI-2:2.89-90.4.s390x",
            "3AS:perl-CGI-2:2.89-90.4.x86_64",
            "3AS:perl-CPAN-2:1.61-90.4.i386",
            "3AS:perl-CPAN-2:1.61-90.4.ia64",
            "3AS:perl-CPAN-2:1.61-90.4.ppc",
            "3AS:perl-CPAN-2:1.61-90.4.s390",
            "3AS:perl-CPAN-2:1.61-90.4.s390x",
            "3AS:perl-CPAN-2:1.61-90.4.x86_64",
            "3AS:perl-DB_File-2:1.806-90.4.i386",
            "3AS:perl-DB_File-2:1.806-90.4.ia64",
            "3AS:perl-DB_File-2:1.806-90.4.ppc",
            "3AS:perl-DB_File-2:1.806-90.4.s390",
            "3AS:perl-DB_File-2:1.806-90.4.s390x",
            "3AS:perl-DB_File-2:1.806-90.4.x86_64",
            "3AS:perl-suidperl-2:5.8.0-90.4.i386",
            "3AS:perl-suidperl-2:5.8.0-90.4.ia64",
            "3AS:perl-suidperl-2:5.8.0-90.4.ppc",
            "3AS:perl-suidperl-2:5.8.0-90.4.s390",
            "3AS:perl-suidperl-2:5.8.0-90.4.s390x",
            "3AS:perl-suidperl-2:5.8.0-90.4.x86_64",
            "3Desktop:perl-2:5.8.0-90.4.i386",
            "3Desktop:perl-2:5.8.0-90.4.ia64",
            "3Desktop:perl-2:5.8.0-90.4.ppc",
            "3Desktop:perl-2:5.8.0-90.4.s390",
            "3Desktop:perl-2:5.8.0-90.4.s390x",
            "3Desktop:perl-2:5.8.0-90.4.src",
            "3Desktop:perl-2:5.8.0-90.4.x86_64",
            "3Desktop:perl-CGI-2:2.89-90.4.i386",
            "3Desktop:perl-CGI-2:2.89-90.4.ia64",
            "3Desktop:perl-CGI-2:2.89-90.4.ppc",
            "3Desktop:perl-CGI-2:2.89-90.4.s390",
            "3Desktop:perl-CGI-2:2.89-90.4.s390x",
            "3Desktop:perl-CGI-2:2.89-90.4.x86_64",
            "3Desktop:perl-CPAN-2:1.61-90.4.i386",
            "3Desktop:perl-CPAN-2:1.61-90.4.ia64",
            "3Desktop:perl-CPAN-2:1.61-90.4.ppc",
            "3Desktop:perl-CPAN-2:1.61-90.4.s390",
            "3Desktop:perl-CPAN-2:1.61-90.4.s390x",
            "3Desktop:perl-CPAN-2:1.61-90.4.x86_64",
            "3Desktop:perl-DB_File-2:1.806-90.4.i386",
            "3Desktop:perl-DB_File-2:1.806-90.4.ia64",
            "3Desktop:perl-DB_File-2:1.806-90.4.ppc",
            "3Desktop:perl-DB_File-2:1.806-90.4.s390",
            "3Desktop:perl-DB_File-2:1.806-90.4.s390x",
            "3Desktop:perl-DB_File-2:1.806-90.4.x86_64",
            "3Desktop:perl-suidperl-2:5.8.0-90.4.i386",
            "3Desktop:perl-suidperl-2:5.8.0-90.4.ia64",
            "3Desktop:perl-suidperl-2:5.8.0-90.4.ppc",
            "3Desktop:perl-suidperl-2:5.8.0-90.4.s390",
            "3Desktop:perl-suidperl-2:5.8.0-90.4.s390x",
            "3Desktop:perl-suidperl-2:5.8.0-90.4.x86_64",
            "3ES:perl-2:5.8.0-90.4.i386",
            "3ES:perl-2:5.8.0-90.4.ia64",
            "3ES:perl-2:5.8.0-90.4.ppc",
            "3ES:perl-2:5.8.0-90.4.s390",
            "3ES:perl-2:5.8.0-90.4.s390x",
            "3ES:perl-2:5.8.0-90.4.src",
            "3ES:perl-2:5.8.0-90.4.x86_64",
            "3ES:perl-CGI-2:2.89-90.4.i386",
            "3ES:perl-CGI-2:2.89-90.4.ia64",
            "3ES:perl-CGI-2:2.89-90.4.ppc",
            "3ES:perl-CGI-2:2.89-90.4.s390",
            "3ES:perl-CGI-2:2.89-90.4.s390x",
            "3ES:perl-CGI-2:2.89-90.4.x86_64",
            "3ES:perl-CPAN-2:1.61-90.4.i386",
            "3ES:perl-CPAN-2:1.61-90.4.ia64",
            "3ES:perl-CPAN-2:1.61-90.4.ppc",
            "3ES:perl-CPAN-2:1.61-90.4.s390",
            "3ES:perl-CPAN-2:1.61-90.4.s390x",
            "3ES:perl-CPAN-2:1.61-90.4.x86_64",
            "3ES:perl-DB_File-2:1.806-90.4.i386",
            "3ES:perl-DB_File-2:1.806-90.4.ia64",
            "3ES:perl-DB_File-2:1.806-90.4.ppc",
            "3ES:perl-DB_File-2:1.806-90.4.s390",
            "3ES:perl-DB_File-2:1.806-90.4.s390x",
            "3ES:perl-DB_File-2:1.806-90.4.x86_64",
            "3ES:perl-suidperl-2:5.8.0-90.4.i386",
            "3ES:perl-suidperl-2:5.8.0-90.4.ia64",
            "3ES:perl-suidperl-2:5.8.0-90.4.ppc",
            "3ES:perl-suidperl-2:5.8.0-90.4.s390",
            "3ES:perl-suidperl-2:5.8.0-90.4.s390x",
            "3ES:perl-suidperl-2:5.8.0-90.4.x86_64",
            "3WS:perl-2:5.8.0-90.4.i386",
            "3WS:perl-2:5.8.0-90.4.ia64",
            "3WS:perl-2:5.8.0-90.4.ppc",
            "3WS:perl-2:5.8.0-90.4.s390",
            "3WS:perl-2:5.8.0-90.4.s390x",
            "3WS:perl-2:5.8.0-90.4.src",
            "3WS:perl-2:5.8.0-90.4.x86_64",
            "3WS:perl-CGI-2:2.89-90.4.i386",
            "3WS:perl-CGI-2:2.89-90.4.ia64",
            "3WS:perl-CGI-2:2.89-90.4.ppc",
            "3WS:perl-CGI-2:2.89-90.4.s390",
            "3WS:perl-CGI-2:2.89-90.4.s390x",
            "3WS:perl-CGI-2:2.89-90.4.x86_64",
            "3WS:perl-CPAN-2:1.61-90.4.i386",
            "3WS:perl-CPAN-2:1.61-90.4.ia64",
            "3WS:perl-CPAN-2:1.61-90.4.ppc",
            "3WS:perl-CPAN-2:1.61-90.4.s390",
            "3WS:perl-CPAN-2:1.61-90.4.s390x",
            "3WS:perl-CPAN-2:1.61-90.4.x86_64",
            "3WS:perl-DB_File-2:1.806-90.4.i386",
            "3WS:perl-DB_File-2:1.806-90.4.ia64",
            "3WS:perl-DB_File-2:1.806-90.4.ppc",
            "3WS:perl-DB_File-2:1.806-90.4.s390",
            "3WS:perl-DB_File-2:1.806-90.4.s390x",
            "3WS:perl-DB_File-2:1.806-90.4.x86_64",
            "3WS:perl-suidperl-2:5.8.0-90.4.i386",
            "3WS:perl-suidperl-2:5.8.0-90.4.ia64",
            "3WS:perl-suidperl-2:5.8.0-90.4.ppc",
            "3WS:perl-suidperl-2:5.8.0-90.4.s390",
            "3WS:perl-suidperl-2:5.8.0-90.4.s390x",
            "3WS:perl-suidperl-2:5.8.0-90.4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2005:881"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "security flaw"
    },
    {
      "cve": "CVE-2005-3962",
      "discovery_date": "2005-12-01T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1617848"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Integer overflow in the format string functionality (Perl_sv_vcatpvfn) in Perl 5.9.2 and 5.8.6 Perl allows attackers to overwrite arbitrary memory and possibly execute arbitrary code via format string specifiers with large values, which causes an integer wrap and leads to a buffer overflow, as demonstrated using format string vulnerabilities in Perl applications.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS:perl-2:5.8.0-90.4.i386",
          "3AS:perl-2:5.8.0-90.4.ia64",
          "3AS:perl-2:5.8.0-90.4.ppc",
          "3AS:perl-2:5.8.0-90.4.s390",
          "3AS:perl-2:5.8.0-90.4.s390x",
          "3AS:perl-2:5.8.0-90.4.src",
          "3AS:perl-2:5.8.0-90.4.x86_64",
          "3AS:perl-CGI-2:2.89-90.4.i386",
          "3AS:perl-CGI-2:2.89-90.4.ia64",
          "3AS:perl-CGI-2:2.89-90.4.ppc",
          "3AS:perl-CGI-2:2.89-90.4.s390",
          "3AS:perl-CGI-2:2.89-90.4.s390x",
          "3AS:perl-CGI-2:2.89-90.4.x86_64",
          "3AS:perl-CPAN-2:1.61-90.4.i386",
          "3AS:perl-CPAN-2:1.61-90.4.ia64",
          "3AS:perl-CPAN-2:1.61-90.4.ppc",
          "3AS:perl-CPAN-2:1.61-90.4.s390",
          "3AS:perl-CPAN-2:1.61-90.4.s390x",
          "3AS:perl-CPAN-2:1.61-90.4.x86_64",
          "3AS:perl-DB_File-2:1.806-90.4.i386",
          "3AS:perl-DB_File-2:1.806-90.4.ia64",
          "3AS:perl-DB_File-2:1.806-90.4.ppc",
          "3AS:perl-DB_File-2:1.806-90.4.s390",
          "3AS:perl-DB_File-2:1.806-90.4.s390x",
          "3AS:perl-DB_File-2:1.806-90.4.x86_64",
          "3AS:perl-suidperl-2:5.8.0-90.4.i386",
          "3AS:perl-suidperl-2:5.8.0-90.4.ia64",
          "3AS:perl-suidperl-2:5.8.0-90.4.ppc",
          "3AS:perl-suidperl-2:5.8.0-90.4.s390",
          "3AS:perl-suidperl-2:5.8.0-90.4.s390x",
          "3AS:perl-suidperl-2:5.8.0-90.4.x86_64",
          "3Desktop:perl-2:5.8.0-90.4.i386",
          "3Desktop:perl-2:5.8.0-90.4.ia64",
          "3Desktop:perl-2:5.8.0-90.4.ppc",
          "3Desktop:perl-2:5.8.0-90.4.s390",
          "3Desktop:perl-2:5.8.0-90.4.s390x",
          "3Desktop:perl-2:5.8.0-90.4.src",
          "3Desktop:perl-2:5.8.0-90.4.x86_64",
          "3Desktop:perl-CGI-2:2.89-90.4.i386",
          "3Desktop:perl-CGI-2:2.89-90.4.ia64",
          "3Desktop:perl-CGI-2:2.89-90.4.ppc",
          "3Desktop:perl-CGI-2:2.89-90.4.s390",
          "3Desktop:perl-CGI-2:2.89-90.4.s390x",
          "3Desktop:perl-CGI-2:2.89-90.4.x86_64",
          "3Desktop:perl-CPAN-2:1.61-90.4.i386",
          "3Desktop:perl-CPAN-2:1.61-90.4.ia64",
          "3Desktop:perl-CPAN-2:1.61-90.4.ppc",
          "3Desktop:perl-CPAN-2:1.61-90.4.s390",
          "3Desktop:perl-CPAN-2:1.61-90.4.s390x",
          "3Desktop:perl-CPAN-2:1.61-90.4.x86_64",
          "3Desktop:perl-DB_File-2:1.806-90.4.i386",
          "3Desktop:perl-DB_File-2:1.806-90.4.ia64",
          "3Desktop:perl-DB_File-2:1.806-90.4.ppc",
          "3Desktop:perl-DB_File-2:1.806-90.4.s390",
          "3Desktop:perl-DB_File-2:1.806-90.4.s390x",
          "3Desktop:perl-DB_File-2:1.806-90.4.x86_64",
          "3Desktop:perl-suidperl-2:5.8.0-90.4.i386",
          "3Desktop:perl-suidperl-2:5.8.0-90.4.ia64",
          "3Desktop:perl-suidperl-2:5.8.0-90.4.ppc",
          "3Desktop:perl-suidperl-2:5.8.0-90.4.s390",
          "3Desktop:perl-suidperl-2:5.8.0-90.4.s390x",
          "3Desktop:perl-suidperl-2:5.8.0-90.4.x86_64",
          "3ES:perl-2:5.8.0-90.4.i386",
          "3ES:perl-2:5.8.0-90.4.ia64",
          "3ES:perl-2:5.8.0-90.4.ppc",
          "3ES:perl-2:5.8.0-90.4.s390",
          "3ES:perl-2:5.8.0-90.4.s390x",
          "3ES:perl-2:5.8.0-90.4.src",
          "3ES:perl-2:5.8.0-90.4.x86_64",
          "3ES:perl-CGI-2:2.89-90.4.i386",
          "3ES:perl-CGI-2:2.89-90.4.ia64",
          "3ES:perl-CGI-2:2.89-90.4.ppc",
          "3ES:perl-CGI-2:2.89-90.4.s390",
          "3ES:perl-CGI-2:2.89-90.4.s390x",
          "3ES:perl-CGI-2:2.89-90.4.x86_64",
          "3ES:perl-CPAN-2:1.61-90.4.i386",
          "3ES:perl-CPAN-2:1.61-90.4.ia64",
          "3ES:perl-CPAN-2:1.61-90.4.ppc",
          "3ES:perl-CPAN-2:1.61-90.4.s390",
          "3ES:perl-CPAN-2:1.61-90.4.s390x",
          "3ES:perl-CPAN-2:1.61-90.4.x86_64",
          "3ES:perl-DB_File-2:1.806-90.4.i386",
          "3ES:perl-DB_File-2:1.806-90.4.ia64",
          "3ES:perl-DB_File-2:1.806-90.4.ppc",
          "3ES:perl-DB_File-2:1.806-90.4.s390",
          "3ES:perl-DB_File-2:1.806-90.4.s390x",
          "3ES:perl-DB_File-2:1.806-90.4.x86_64",
          "3ES:perl-suidperl-2:5.8.0-90.4.i386",
          "3ES:perl-suidperl-2:5.8.0-90.4.ia64",
          "3ES:perl-suidperl-2:5.8.0-90.4.ppc",
          "3ES:perl-suidperl-2:5.8.0-90.4.s390",
          "3ES:perl-suidperl-2:5.8.0-90.4.s390x",
          "3ES:perl-suidperl-2:5.8.0-90.4.x86_64",
          "3WS:perl-2:5.8.0-90.4.i386",
          "3WS:perl-2:5.8.0-90.4.ia64",
          "3WS:perl-2:5.8.0-90.4.ppc",
          "3WS:perl-2:5.8.0-90.4.s390",
          "3WS:perl-2:5.8.0-90.4.s390x",
          "3WS:perl-2:5.8.0-90.4.src",
          "3WS:perl-2:5.8.0-90.4.x86_64",
          "3WS:perl-CGI-2:2.89-90.4.i386",
          "3WS:perl-CGI-2:2.89-90.4.ia64",
          "3WS:perl-CGI-2:2.89-90.4.ppc",
          "3WS:perl-CGI-2:2.89-90.4.s390",
          "3WS:perl-CGI-2:2.89-90.4.s390x",
          "3WS:perl-CGI-2:2.89-90.4.x86_64",
          "3WS:perl-CPAN-2:1.61-90.4.i386",
          "3WS:perl-CPAN-2:1.61-90.4.ia64",
          "3WS:perl-CPAN-2:1.61-90.4.ppc",
          "3WS:perl-CPAN-2:1.61-90.4.s390",
          "3WS:perl-CPAN-2:1.61-90.4.s390x",
          "3WS:perl-CPAN-2:1.61-90.4.x86_64",
          "3WS:perl-DB_File-2:1.806-90.4.i386",
          "3WS:perl-DB_File-2:1.806-90.4.ia64",
          "3WS:perl-DB_File-2:1.806-90.4.ppc",
          "3WS:perl-DB_File-2:1.806-90.4.s390",
          "3WS:perl-DB_File-2:1.806-90.4.s390x",
          "3WS:perl-DB_File-2:1.806-90.4.x86_64",
          "3WS:perl-suidperl-2:5.8.0-90.4.i386",
          "3WS:perl-suidperl-2:5.8.0-90.4.ia64",
          "3WS:perl-suidperl-2:5.8.0-90.4.ppc",
          "3WS:perl-suidperl-2:5.8.0-90.4.s390",
          "3WS:perl-suidperl-2:5.8.0-90.4.s390x",
          "3WS:perl-suidperl-2:5.8.0-90.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2005-3962"
        },
        {
          "category": "external",
          "summary": "RHBZ#1617848",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617848"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2005-3962",
          "url": "https://www.cve.org/CVERecord?id=CVE-2005-3962"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2005-3962",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-3962"
        }
      ],
      "release_date": "2005-12-01T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2005-12-20T15:00:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network.  To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "3AS:perl-2:5.8.0-90.4.i386",
            "3AS:perl-2:5.8.0-90.4.ia64",
            "3AS:perl-2:5.8.0-90.4.ppc",
            "3AS:perl-2:5.8.0-90.4.s390",
            "3AS:perl-2:5.8.0-90.4.s390x",
            "3AS:perl-2:5.8.0-90.4.src",
            "3AS:perl-2:5.8.0-90.4.x86_64",
            "3AS:perl-CGI-2:2.89-90.4.i386",
            "3AS:perl-CGI-2:2.89-90.4.ia64",
            "3AS:perl-CGI-2:2.89-90.4.ppc",
            "3AS:perl-CGI-2:2.89-90.4.s390",
            "3AS:perl-CGI-2:2.89-90.4.s390x",
            "3AS:perl-CGI-2:2.89-90.4.x86_64",
            "3AS:perl-CPAN-2:1.61-90.4.i386",
            "3AS:perl-CPAN-2:1.61-90.4.ia64",
            "3AS:perl-CPAN-2:1.61-90.4.ppc",
            "3AS:perl-CPAN-2:1.61-90.4.s390",
            "3AS:perl-CPAN-2:1.61-90.4.s390x",
            "3AS:perl-CPAN-2:1.61-90.4.x86_64",
            "3AS:perl-DB_File-2:1.806-90.4.i386",
            "3AS:perl-DB_File-2:1.806-90.4.ia64",
            "3AS:perl-DB_File-2:1.806-90.4.ppc",
            "3AS:perl-DB_File-2:1.806-90.4.s390",
            "3AS:perl-DB_File-2:1.806-90.4.s390x",
            "3AS:perl-DB_File-2:1.806-90.4.x86_64",
            "3AS:perl-suidperl-2:5.8.0-90.4.i386",
            "3AS:perl-suidperl-2:5.8.0-90.4.ia64",
            "3AS:perl-suidperl-2:5.8.0-90.4.ppc",
            "3AS:perl-suidperl-2:5.8.0-90.4.s390",
            "3AS:perl-suidperl-2:5.8.0-90.4.s390x",
            "3AS:perl-suidperl-2:5.8.0-90.4.x86_64",
            "3Desktop:perl-2:5.8.0-90.4.i386",
            "3Desktop:perl-2:5.8.0-90.4.ia64",
            "3Desktop:perl-2:5.8.0-90.4.ppc",
            "3Desktop:perl-2:5.8.0-90.4.s390",
            "3Desktop:perl-2:5.8.0-90.4.s390x",
            "3Desktop:perl-2:5.8.0-90.4.src",
            "3Desktop:perl-2:5.8.0-90.4.x86_64",
            "3Desktop:perl-CGI-2:2.89-90.4.i386",
            "3Desktop:perl-CGI-2:2.89-90.4.ia64",
            "3Desktop:perl-CGI-2:2.89-90.4.ppc",
            "3Desktop:perl-CGI-2:2.89-90.4.s390",
            "3Desktop:perl-CGI-2:2.89-90.4.s390x",
            "3Desktop:perl-CGI-2:2.89-90.4.x86_64",
            "3Desktop:perl-CPAN-2:1.61-90.4.i386",
            "3Desktop:perl-CPAN-2:1.61-90.4.ia64",
            "3Desktop:perl-CPAN-2:1.61-90.4.ppc",
            "3Desktop:perl-CPAN-2:1.61-90.4.s390",
            "3Desktop:perl-CPAN-2:1.61-90.4.s390x",
            "3Desktop:perl-CPAN-2:1.61-90.4.x86_64",
            "3Desktop:perl-DB_File-2:1.806-90.4.i386",
            "3Desktop:perl-DB_File-2:1.806-90.4.ia64",
            "3Desktop:perl-DB_File-2:1.806-90.4.ppc",
            "3Desktop:perl-DB_File-2:1.806-90.4.s390",
            "3Desktop:perl-DB_File-2:1.806-90.4.s390x",
            "3Desktop:perl-DB_File-2:1.806-90.4.x86_64",
            "3Desktop:perl-suidperl-2:5.8.0-90.4.i386",
            "3Desktop:perl-suidperl-2:5.8.0-90.4.ia64",
            "3Desktop:perl-suidperl-2:5.8.0-90.4.ppc",
            "3Desktop:perl-suidperl-2:5.8.0-90.4.s390",
            "3Desktop:perl-suidperl-2:5.8.0-90.4.s390x",
            "3Desktop:perl-suidperl-2:5.8.0-90.4.x86_64",
            "3ES:perl-2:5.8.0-90.4.i386",
            "3ES:perl-2:5.8.0-90.4.ia64",
            "3ES:perl-2:5.8.0-90.4.ppc",
            "3ES:perl-2:5.8.0-90.4.s390",
            "3ES:perl-2:5.8.0-90.4.s390x",
            "3ES:perl-2:5.8.0-90.4.src",
            "3ES:perl-2:5.8.0-90.4.x86_64",
            "3ES:perl-CGI-2:2.89-90.4.i386",
            "3ES:perl-CGI-2:2.89-90.4.ia64",
            "3ES:perl-CGI-2:2.89-90.4.ppc",
            "3ES:perl-CGI-2:2.89-90.4.s390",
            "3ES:perl-CGI-2:2.89-90.4.s390x",
            "3ES:perl-CGI-2:2.89-90.4.x86_64",
            "3ES:perl-CPAN-2:1.61-90.4.i386",
            "3ES:perl-CPAN-2:1.61-90.4.ia64",
            "3ES:perl-CPAN-2:1.61-90.4.ppc",
            "3ES:perl-CPAN-2:1.61-90.4.s390",
            "3ES:perl-CPAN-2:1.61-90.4.s390x",
            "3ES:perl-CPAN-2:1.61-90.4.x86_64",
            "3ES:perl-DB_File-2:1.806-90.4.i386",
            "3ES:perl-DB_File-2:1.806-90.4.ia64",
            "3ES:perl-DB_File-2:1.806-90.4.ppc",
            "3ES:perl-DB_File-2:1.806-90.4.s390",
            "3ES:perl-DB_File-2:1.806-90.4.s390x",
            "3ES:perl-DB_File-2:1.806-90.4.x86_64",
            "3ES:perl-suidperl-2:5.8.0-90.4.i386",
            "3ES:perl-suidperl-2:5.8.0-90.4.ia64",
            "3ES:perl-suidperl-2:5.8.0-90.4.ppc",
            "3ES:perl-suidperl-2:5.8.0-90.4.s390",
            "3ES:perl-suidperl-2:5.8.0-90.4.s390x",
            "3ES:perl-suidperl-2:5.8.0-90.4.x86_64",
            "3WS:perl-2:5.8.0-90.4.i386",
            "3WS:perl-2:5.8.0-90.4.ia64",
            "3WS:perl-2:5.8.0-90.4.ppc",
            "3WS:perl-2:5.8.0-90.4.s390",
            "3WS:perl-2:5.8.0-90.4.s390x",
            "3WS:perl-2:5.8.0-90.4.src",
            "3WS:perl-2:5.8.0-90.4.x86_64",
            "3WS:perl-CGI-2:2.89-90.4.i386",
            "3WS:perl-CGI-2:2.89-90.4.ia64",
            "3WS:perl-CGI-2:2.89-90.4.ppc",
            "3WS:perl-CGI-2:2.89-90.4.s390",
            "3WS:perl-CGI-2:2.89-90.4.s390x",
            "3WS:perl-CGI-2:2.89-90.4.x86_64",
            "3WS:perl-CPAN-2:1.61-90.4.i386",
            "3WS:perl-CPAN-2:1.61-90.4.ia64",
            "3WS:perl-CPAN-2:1.61-90.4.ppc",
            "3WS:perl-CPAN-2:1.61-90.4.s390",
            "3WS:perl-CPAN-2:1.61-90.4.s390x",
            "3WS:perl-CPAN-2:1.61-90.4.x86_64",
            "3WS:perl-DB_File-2:1.806-90.4.i386",
            "3WS:perl-DB_File-2:1.806-90.4.ia64",
            "3WS:perl-DB_File-2:1.806-90.4.ppc",
            "3WS:perl-DB_File-2:1.806-90.4.s390",
            "3WS:perl-DB_File-2:1.806-90.4.s390x",
            "3WS:perl-DB_File-2:1.806-90.4.x86_64",
            "3WS:perl-suidperl-2:5.8.0-90.4.i386",
            "3WS:perl-suidperl-2:5.8.0-90.4.ia64",
            "3WS:perl-suidperl-2:5.8.0-90.4.ppc",
            "3WS:perl-suidperl-2:5.8.0-90.4.s390",
            "3WS:perl-suidperl-2:5.8.0-90.4.s390x",
            "3WS:perl-suidperl-2:5.8.0-90.4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2005:881"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "security flaw"
    }
  ]
}

rhsa-2005:880

Vulnerability from csaf_redhat

Published

2005-12-20 14:33

Modified

2024-11-22 00:08

Summary

Red Hat Security Advisory: perl security update

Notes

Topic

Updated Perl packages that fix security issues and bugs are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team.

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated Perl packages that fix security issues and bugs are now available\nfor Red Hat Enterprise Linux 4.\n\nThis update has been rated as having moderate security impact by the Red\nHat Security Response Team.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Perl is a high-level programming language commonly used for system\nadministration utilities and Web programming.\n\nAn integer overflow bug was found in Perl\u0027s format string processor.  It is\npossible for an attacker to cause perl to crash or execute arbitrary code\nif the attacker is able to process a malicious format string.  This issue\nis only exploitable through a script which passes arbitrary untrusted\nstrings to the format string processor.  The Common Vulnerabilities and\nExposures project assigned the name CVE-2005-3962 to this issue.\n\nUsers of Perl are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues as well as fixes for\nseveral bugs.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2005:880",
        "url": "https://access.redhat.com/errata/RHSA-2005:880"
      },
      {
        "category": "external",
        "summary": "170088",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=170088"
      },
      {
        "category": "external",
        "summary": "171111",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=171111"
      },
      {
        "category": "external",
        "summary": "172327",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=172327"
      },
      {
        "category": "external",
        "summary": "174683",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=174683"
      },
      {
        "category": "external",
        "summary": "175104",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=175104"
      },
      {
        "category": "external",
        "summary": "175129",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=175129"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2005/rhsa-2005_880.json"
      }
    ],
    "title": "Red Hat Security Advisory: perl security update",
    "tracking": {
      "current_release_date": "2024-11-22T00:08:09+00:00",
      "generator": {
        "date": "2024-11-22T00:08:09+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2005:880",
      "initial_release_date": "2005-12-20T14:33:00+00:00",
      "revision_history": [
        {
          "date": "2005-12-20T14:33:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2005-12-20T00:00:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-22T00:08:09+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AS version 4",
                "product": {
                  "name": "Red Hat Enterprise Linux AS version 4",
                  "product_id": "4AS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:4::as"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Desktop version 4",
                "product": {
                  "name": "Red Hat Enterprise Linux Desktop version 4",
                  "product_id": "4Desktop",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:4::desktop"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux ES version 4",
                "product": {
                  "name": "Red Hat Enterprise Linux ES version 4",
                  "product_id": "4ES",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:4::es"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux WS version 4",
                "product": {
                  "name": "Red Hat Enterprise Linux WS version 4",
                  "product_id": "4WS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:4::ws"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "perl-suidperl-3:5.8.5-24.RHEL4.ia64",
                "product": {
                  "name": "perl-suidperl-3:5.8.5-24.RHEL4.ia64",
                  "product_id": "perl-suidperl-3:5.8.5-24.RHEL4.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-suidperl@5.8.5-24.RHEL4?arch=ia64\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-3:5.8.5-24.RHEL4.ia64",
                "product": {
                  "name": "perl-3:5.8.5-24.RHEL4.ia64",
                  "product_id": "perl-3:5.8.5-24.RHEL4.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl@5.8.5-24.RHEL4?arch=ia64\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-debuginfo-3:5.8.5-24.RHEL4.ia64",
                "product": {
                  "name": "perl-debuginfo-3:5.8.5-24.RHEL4.ia64",
                  "product_id": "perl-debuginfo-3:5.8.5-24.RHEL4.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-debuginfo@5.8.5-24.RHEL4?arch=ia64\u0026epoch=3"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ia64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "perl-suidperl-3:5.8.5-24.RHEL4.x86_64",
                "product": {
                  "name": "perl-suidperl-3:5.8.5-24.RHEL4.x86_64",
                  "product_id": "perl-suidperl-3:5.8.5-24.RHEL4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-suidperl@5.8.5-24.RHEL4?arch=x86_64\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-3:5.8.5-24.RHEL4.x86_64",
                "product": {
                  "name": "perl-3:5.8.5-24.RHEL4.x86_64",
                  "product_id": "perl-3:5.8.5-24.RHEL4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl@5.8.5-24.RHEL4?arch=x86_64\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-debuginfo-3:5.8.5-24.RHEL4.x86_64",
                "product": {
                  "name": "perl-debuginfo-3:5.8.5-24.RHEL4.x86_64",
                  "product_id": "perl-debuginfo-3:5.8.5-24.RHEL4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-debuginfo@5.8.5-24.RHEL4?arch=x86_64\u0026epoch=3"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "perl-suidperl-3:5.8.5-24.RHEL4.i386",
                "product": {
                  "name": "perl-suidperl-3:5.8.5-24.RHEL4.i386",
                  "product_id": "perl-suidperl-3:5.8.5-24.RHEL4.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-suidperl@5.8.5-24.RHEL4?arch=i386\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-3:5.8.5-24.RHEL4.i386",
                "product": {
                  "name": "perl-3:5.8.5-24.RHEL4.i386",
                  "product_id": "perl-3:5.8.5-24.RHEL4.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl@5.8.5-24.RHEL4?arch=i386\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-debuginfo-3:5.8.5-24.RHEL4.i386",
                "product": {
                  "name": "perl-debuginfo-3:5.8.5-24.RHEL4.i386",
                  "product_id": "perl-debuginfo-3:5.8.5-24.RHEL4.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-debuginfo@5.8.5-24.RHEL4?arch=i386\u0026epoch=3"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i386"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "perl-3:5.8.5-24.RHEL4.src",
                "product": {
                  "name": "perl-3:5.8.5-24.RHEL4.src",
                  "product_id": "perl-3:5.8.5-24.RHEL4.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl@5.8.5-24.RHEL4?arch=src\u0026epoch=3"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "perl-suidperl-3:5.8.5-24.RHEL4.ppc",
                "product": {
                  "name": "perl-suidperl-3:5.8.5-24.RHEL4.ppc",
                  "product_id": "perl-suidperl-3:5.8.5-24.RHEL4.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-suidperl@5.8.5-24.RHEL4?arch=ppc\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-3:5.8.5-24.RHEL4.ppc",
                "product": {
                  "name": "perl-3:5.8.5-24.RHEL4.ppc",
                  "product_id": "perl-3:5.8.5-24.RHEL4.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl@5.8.5-24.RHEL4?arch=ppc\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-debuginfo-3:5.8.5-24.RHEL4.ppc",
                "product": {
                  "name": "perl-debuginfo-3:5.8.5-24.RHEL4.ppc",
                  "product_id": "perl-debuginfo-3:5.8.5-24.RHEL4.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-debuginfo@5.8.5-24.RHEL4?arch=ppc\u0026epoch=3"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "perl-suidperl-3:5.8.5-24.RHEL4.s390x",
                "product": {
                  "name": "perl-suidperl-3:5.8.5-24.RHEL4.s390x",
                  "product_id": "perl-suidperl-3:5.8.5-24.RHEL4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-suidperl@5.8.5-24.RHEL4?arch=s390x\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-3:5.8.5-24.RHEL4.s390x",
                "product": {
                  "name": "perl-3:5.8.5-24.RHEL4.s390x",
                  "product_id": "perl-3:5.8.5-24.RHEL4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl@5.8.5-24.RHEL4?arch=s390x\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-debuginfo-3:5.8.5-24.RHEL4.s390x",
                "product": {
                  "name": "perl-debuginfo-3:5.8.5-24.RHEL4.s390x",
                  "product_id": "perl-debuginfo-3:5.8.5-24.RHEL4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-debuginfo@5.8.5-24.RHEL4?arch=s390x\u0026epoch=3"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "perl-suidperl-3:5.8.5-24.RHEL4.s390",
                "product": {
                  "name": "perl-suidperl-3:5.8.5-24.RHEL4.s390",
                  "product_id": "perl-suidperl-3:5.8.5-24.RHEL4.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-suidperl@5.8.5-24.RHEL4?arch=s390\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-3:5.8.5-24.RHEL4.s390",
                "product": {
                  "name": "perl-3:5.8.5-24.RHEL4.s390",
                  "product_id": "perl-3:5.8.5-24.RHEL4.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl@5.8.5-24.RHEL4?arch=s390\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "perl-debuginfo-3:5.8.5-24.RHEL4.s390",
                "product": {
                  "name": "perl-debuginfo-3:5.8.5-24.RHEL4.s390",
                  "product_id": "perl-debuginfo-3:5.8.5-24.RHEL4.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/perl-debuginfo@5.8.5-24.RHEL4?arch=s390\u0026epoch=3"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.i386 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:perl-3:5.8.5-24.RHEL4.i386"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.i386",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.ia64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:perl-3:5.8.5-24.RHEL4.ia64"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.ia64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.ppc as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:perl-3:5.8.5-24.RHEL4.ppc"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.ppc",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.s390 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:perl-3:5.8.5-24.RHEL4.s390"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.s390",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.s390x as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:perl-3:5.8.5-24.RHEL4.s390x"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.s390x",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.src as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:perl-3:5.8.5-24.RHEL4.src"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.src",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:perl-3:5.8.5-24.RHEL4.x86_64"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.x86_64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-debuginfo-3:5.8.5-24.RHEL4.i386 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:perl-debuginfo-3:5.8.5-24.RHEL4.i386"
        },
        "product_reference": "perl-debuginfo-3:5.8.5-24.RHEL4.i386",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-debuginfo-3:5.8.5-24.RHEL4.ia64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:perl-debuginfo-3:5.8.5-24.RHEL4.ia64"
        },
        "product_reference": "perl-debuginfo-3:5.8.5-24.RHEL4.ia64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-debuginfo-3:5.8.5-24.RHEL4.ppc as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:perl-debuginfo-3:5.8.5-24.RHEL4.ppc"
        },
        "product_reference": "perl-debuginfo-3:5.8.5-24.RHEL4.ppc",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-debuginfo-3:5.8.5-24.RHEL4.s390 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:perl-debuginfo-3:5.8.5-24.RHEL4.s390"
        },
        "product_reference": "perl-debuginfo-3:5.8.5-24.RHEL4.s390",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-debuginfo-3:5.8.5-24.RHEL4.s390x as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:perl-debuginfo-3:5.8.5-24.RHEL4.s390x"
        },
        "product_reference": "perl-debuginfo-3:5.8.5-24.RHEL4.s390x",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-debuginfo-3:5.8.5-24.RHEL4.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:perl-debuginfo-3:5.8.5-24.RHEL4.x86_64"
        },
        "product_reference": "perl-debuginfo-3:5.8.5-24.RHEL4.x86_64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-3:5.8.5-24.RHEL4.i386 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:perl-suidperl-3:5.8.5-24.RHEL4.i386"
        },
        "product_reference": "perl-suidperl-3:5.8.5-24.RHEL4.i386",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-3:5.8.5-24.RHEL4.ia64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:perl-suidperl-3:5.8.5-24.RHEL4.ia64"
        },
        "product_reference": "perl-suidperl-3:5.8.5-24.RHEL4.ia64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-3:5.8.5-24.RHEL4.ppc as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:perl-suidperl-3:5.8.5-24.RHEL4.ppc"
        },
        "product_reference": "perl-suidperl-3:5.8.5-24.RHEL4.ppc",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-3:5.8.5-24.RHEL4.s390 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:perl-suidperl-3:5.8.5-24.RHEL4.s390"
        },
        "product_reference": "perl-suidperl-3:5.8.5-24.RHEL4.s390",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-3:5.8.5-24.RHEL4.s390x as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:perl-suidperl-3:5.8.5-24.RHEL4.s390x"
        },
        "product_reference": "perl-suidperl-3:5.8.5-24.RHEL4.s390x",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-3:5.8.5-24.RHEL4.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:perl-suidperl-3:5.8.5-24.RHEL4.x86_64"
        },
        "product_reference": "perl-suidperl-3:5.8.5-24.RHEL4.x86_64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:perl-3:5.8.5-24.RHEL4.i386"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.i386",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:perl-3:5.8.5-24.RHEL4.ia64"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.ia64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:perl-3:5.8.5-24.RHEL4.ppc"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.ppc",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:perl-3:5.8.5-24.RHEL4.s390"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.s390",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:perl-3:5.8.5-24.RHEL4.s390x"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.s390x",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.src as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:perl-3:5.8.5-24.RHEL4.src"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.src",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:perl-3:5.8.5-24.RHEL4.x86_64"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.x86_64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-debuginfo-3:5.8.5-24.RHEL4.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:perl-debuginfo-3:5.8.5-24.RHEL4.i386"
        },
        "product_reference": "perl-debuginfo-3:5.8.5-24.RHEL4.i386",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-debuginfo-3:5.8.5-24.RHEL4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:perl-debuginfo-3:5.8.5-24.RHEL4.ia64"
        },
        "product_reference": "perl-debuginfo-3:5.8.5-24.RHEL4.ia64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-debuginfo-3:5.8.5-24.RHEL4.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:perl-debuginfo-3:5.8.5-24.RHEL4.ppc"
        },
        "product_reference": "perl-debuginfo-3:5.8.5-24.RHEL4.ppc",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-debuginfo-3:5.8.5-24.RHEL4.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:perl-debuginfo-3:5.8.5-24.RHEL4.s390"
        },
        "product_reference": "perl-debuginfo-3:5.8.5-24.RHEL4.s390",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-debuginfo-3:5.8.5-24.RHEL4.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:perl-debuginfo-3:5.8.5-24.RHEL4.s390x"
        },
        "product_reference": "perl-debuginfo-3:5.8.5-24.RHEL4.s390x",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-debuginfo-3:5.8.5-24.RHEL4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:perl-debuginfo-3:5.8.5-24.RHEL4.x86_64"
        },
        "product_reference": "perl-debuginfo-3:5.8.5-24.RHEL4.x86_64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-3:5.8.5-24.RHEL4.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:perl-suidperl-3:5.8.5-24.RHEL4.i386"
        },
        "product_reference": "perl-suidperl-3:5.8.5-24.RHEL4.i386",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-3:5.8.5-24.RHEL4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:perl-suidperl-3:5.8.5-24.RHEL4.ia64"
        },
        "product_reference": "perl-suidperl-3:5.8.5-24.RHEL4.ia64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-3:5.8.5-24.RHEL4.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:perl-suidperl-3:5.8.5-24.RHEL4.ppc"
        },
        "product_reference": "perl-suidperl-3:5.8.5-24.RHEL4.ppc",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-3:5.8.5-24.RHEL4.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:perl-suidperl-3:5.8.5-24.RHEL4.s390"
        },
        "product_reference": "perl-suidperl-3:5.8.5-24.RHEL4.s390",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-3:5.8.5-24.RHEL4.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:perl-suidperl-3:5.8.5-24.RHEL4.s390x"
        },
        "product_reference": "perl-suidperl-3:5.8.5-24.RHEL4.s390x",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-3:5.8.5-24.RHEL4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:perl-suidperl-3:5.8.5-24.RHEL4.x86_64"
        },
        "product_reference": "perl-suidperl-3:5.8.5-24.RHEL4.x86_64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.i386 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:perl-3:5.8.5-24.RHEL4.i386"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.i386",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.ia64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:perl-3:5.8.5-24.RHEL4.ia64"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.ia64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.ppc as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:perl-3:5.8.5-24.RHEL4.ppc"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.ppc",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.s390 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:perl-3:5.8.5-24.RHEL4.s390"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.s390",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.s390x as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:perl-3:5.8.5-24.RHEL4.s390x"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.s390x",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.src as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:perl-3:5.8.5-24.RHEL4.src"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.src",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:perl-3:5.8.5-24.RHEL4.x86_64"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.x86_64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-debuginfo-3:5.8.5-24.RHEL4.i386 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:perl-debuginfo-3:5.8.5-24.RHEL4.i386"
        },
        "product_reference": "perl-debuginfo-3:5.8.5-24.RHEL4.i386",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-debuginfo-3:5.8.5-24.RHEL4.ia64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:perl-debuginfo-3:5.8.5-24.RHEL4.ia64"
        },
        "product_reference": "perl-debuginfo-3:5.8.5-24.RHEL4.ia64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-debuginfo-3:5.8.5-24.RHEL4.ppc as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:perl-debuginfo-3:5.8.5-24.RHEL4.ppc"
        },
        "product_reference": "perl-debuginfo-3:5.8.5-24.RHEL4.ppc",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-debuginfo-3:5.8.5-24.RHEL4.s390 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:perl-debuginfo-3:5.8.5-24.RHEL4.s390"
        },
        "product_reference": "perl-debuginfo-3:5.8.5-24.RHEL4.s390",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-debuginfo-3:5.8.5-24.RHEL4.s390x as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:perl-debuginfo-3:5.8.5-24.RHEL4.s390x"
        },
        "product_reference": "perl-debuginfo-3:5.8.5-24.RHEL4.s390x",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-debuginfo-3:5.8.5-24.RHEL4.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:perl-debuginfo-3:5.8.5-24.RHEL4.x86_64"
        },
        "product_reference": "perl-debuginfo-3:5.8.5-24.RHEL4.x86_64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-3:5.8.5-24.RHEL4.i386 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:perl-suidperl-3:5.8.5-24.RHEL4.i386"
        },
        "product_reference": "perl-suidperl-3:5.8.5-24.RHEL4.i386",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-3:5.8.5-24.RHEL4.ia64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:perl-suidperl-3:5.8.5-24.RHEL4.ia64"
        },
        "product_reference": "perl-suidperl-3:5.8.5-24.RHEL4.ia64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-3:5.8.5-24.RHEL4.ppc as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:perl-suidperl-3:5.8.5-24.RHEL4.ppc"
        },
        "product_reference": "perl-suidperl-3:5.8.5-24.RHEL4.ppc",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-3:5.8.5-24.RHEL4.s390 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:perl-suidperl-3:5.8.5-24.RHEL4.s390"
        },
        "product_reference": "perl-suidperl-3:5.8.5-24.RHEL4.s390",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-3:5.8.5-24.RHEL4.s390x as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:perl-suidperl-3:5.8.5-24.RHEL4.s390x"
        },
        "product_reference": "perl-suidperl-3:5.8.5-24.RHEL4.s390x",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-3:5.8.5-24.RHEL4.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:perl-suidperl-3:5.8.5-24.RHEL4.x86_64"
        },
        "product_reference": "perl-suidperl-3:5.8.5-24.RHEL4.x86_64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.i386 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:perl-3:5.8.5-24.RHEL4.i386"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.i386",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.ia64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:perl-3:5.8.5-24.RHEL4.ia64"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.ia64",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.ppc as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:perl-3:5.8.5-24.RHEL4.ppc"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.ppc",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.s390 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:perl-3:5.8.5-24.RHEL4.s390"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.s390",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.s390x as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:perl-3:5.8.5-24.RHEL4.s390x"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.s390x",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.src as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:perl-3:5.8.5-24.RHEL4.src"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.src",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-3:5.8.5-24.RHEL4.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:perl-3:5.8.5-24.RHEL4.x86_64"
        },
        "product_reference": "perl-3:5.8.5-24.RHEL4.x86_64",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-debuginfo-3:5.8.5-24.RHEL4.i386 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:perl-debuginfo-3:5.8.5-24.RHEL4.i386"
        },
        "product_reference": "perl-debuginfo-3:5.8.5-24.RHEL4.i386",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-debuginfo-3:5.8.5-24.RHEL4.ia64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:perl-debuginfo-3:5.8.5-24.RHEL4.ia64"
        },
        "product_reference": "perl-debuginfo-3:5.8.5-24.RHEL4.ia64",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-debuginfo-3:5.8.5-24.RHEL4.ppc as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:perl-debuginfo-3:5.8.5-24.RHEL4.ppc"
        },
        "product_reference": "perl-debuginfo-3:5.8.5-24.RHEL4.ppc",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-debuginfo-3:5.8.5-24.RHEL4.s390 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:perl-debuginfo-3:5.8.5-24.RHEL4.s390"
        },
        "product_reference": "perl-debuginfo-3:5.8.5-24.RHEL4.s390",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-debuginfo-3:5.8.5-24.RHEL4.s390x as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:perl-debuginfo-3:5.8.5-24.RHEL4.s390x"
        },
        "product_reference": "perl-debuginfo-3:5.8.5-24.RHEL4.s390x",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-debuginfo-3:5.8.5-24.RHEL4.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:perl-debuginfo-3:5.8.5-24.RHEL4.x86_64"
        },
        "product_reference": "perl-debuginfo-3:5.8.5-24.RHEL4.x86_64",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-3:5.8.5-24.RHEL4.i386 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:perl-suidperl-3:5.8.5-24.RHEL4.i386"
        },
        "product_reference": "perl-suidperl-3:5.8.5-24.RHEL4.i386",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-3:5.8.5-24.RHEL4.ia64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:perl-suidperl-3:5.8.5-24.RHEL4.ia64"
        },
        "product_reference": "perl-suidperl-3:5.8.5-24.RHEL4.ia64",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-3:5.8.5-24.RHEL4.ppc as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:perl-suidperl-3:5.8.5-24.RHEL4.ppc"
        },
        "product_reference": "perl-suidperl-3:5.8.5-24.RHEL4.ppc",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-3:5.8.5-24.RHEL4.s390 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:perl-suidperl-3:5.8.5-24.RHEL4.s390"
        },
        "product_reference": "perl-suidperl-3:5.8.5-24.RHEL4.s390",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-3:5.8.5-24.RHEL4.s390x as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:perl-suidperl-3:5.8.5-24.RHEL4.s390x"
        },
        "product_reference": "perl-suidperl-3:5.8.5-24.RHEL4.s390x",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-suidperl-3:5.8.5-24.RHEL4.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:perl-suidperl-3:5.8.5-24.RHEL4.x86_64"
        },
        "product_reference": "perl-suidperl-3:5.8.5-24.RHEL4.x86_64",
        "relates_to_product_reference": "4WS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2005-3962",
      "discovery_date": "2005-12-01T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1617848"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Integer overflow in the format string functionality (Perl_sv_vcatpvfn) in Perl 5.9.2 and 5.8.6 Perl allows attackers to overwrite arbitrary memory and possibly execute arbitrary code via format string specifiers with large values, which causes an integer wrap and leads to a buffer overflow, as demonstrated using format string vulnerabilities in Perl applications.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "4AS:perl-3:5.8.5-24.RHEL4.i386",
          "4AS:perl-3:5.8.5-24.RHEL4.ia64",
          "4AS:perl-3:5.8.5-24.RHEL4.ppc",
          "4AS:perl-3:5.8.5-24.RHEL4.s390",
          "4AS:perl-3:5.8.5-24.RHEL4.s390x",
          "4AS:perl-3:5.8.5-24.RHEL4.src",
          "4AS:perl-3:5.8.5-24.RHEL4.x86_64",
          "4AS:perl-debuginfo-3:5.8.5-24.RHEL4.i386",
          "4AS:perl-debuginfo-3:5.8.5-24.RHEL4.ia64",
          "4AS:perl-debuginfo-3:5.8.5-24.RHEL4.ppc",
          "4AS:perl-debuginfo-3:5.8.5-24.RHEL4.s390",
          "4AS:perl-debuginfo-3:5.8.5-24.RHEL4.s390x",
          "4AS:perl-debuginfo-3:5.8.5-24.RHEL4.x86_64",
          "4AS:perl-suidperl-3:5.8.5-24.RHEL4.i386",
          "4AS:perl-suidperl-3:5.8.5-24.RHEL4.ia64",
          "4AS:perl-suidperl-3:5.8.5-24.RHEL4.ppc",
          "4AS:perl-suidperl-3:5.8.5-24.RHEL4.s390",
          "4AS:perl-suidperl-3:5.8.5-24.RHEL4.s390x",
          "4AS:perl-suidperl-3:5.8.5-24.RHEL4.x86_64",
          "4Desktop:perl-3:5.8.5-24.RHEL4.i386",
          "4Desktop:perl-3:5.8.5-24.RHEL4.ia64",
          "4Desktop:perl-3:5.8.5-24.RHEL4.ppc",
          "4Desktop:perl-3:5.8.5-24.RHEL4.s390",
          "4Desktop:perl-3:5.8.5-24.RHEL4.s390x",
          "4Desktop:perl-3:5.8.5-24.RHEL4.src",
          "4Desktop:perl-3:5.8.5-24.RHEL4.x86_64",
          "4Desktop:perl-debuginfo-3:5.8.5-24.RHEL4.i386",
          "4Desktop:perl-debuginfo-3:5.8.5-24.RHEL4.ia64",
          "4Desktop:perl-debuginfo-3:5.8.5-24.RHEL4.ppc",
          "4Desktop:perl-debuginfo-3:5.8.5-24.RHEL4.s390",
          "4Desktop:perl-debuginfo-3:5.8.5-24.RHEL4.s390x",
          "4Desktop:perl-debuginfo-3:5.8.5-24.RHEL4.x86_64",
          "4Desktop:perl-suidperl-3:5.8.5-24.RHEL4.i386",
          "4Desktop:perl-suidperl-3:5.8.5-24.RHEL4.ia64",
          "4Desktop:perl-suidperl-3:5.8.5-24.RHEL4.ppc",
          "4Desktop:perl-suidperl-3:5.8.5-24.RHEL4.s390",
          "4Desktop:perl-suidperl-3:5.8.5-24.RHEL4.s390x",
          "4Desktop:perl-suidperl-3:5.8.5-24.RHEL4.x86_64",
          "4ES:perl-3:5.8.5-24.RHEL4.i386",
          "4ES:perl-3:5.8.5-24.RHEL4.ia64",
          "4ES:perl-3:5.8.5-24.RHEL4.ppc",
          "4ES:perl-3:5.8.5-24.RHEL4.s390",
          "4ES:perl-3:5.8.5-24.RHEL4.s390x",
          "4ES:perl-3:5.8.5-24.RHEL4.src",
          "4ES:perl-3:5.8.5-24.RHEL4.x86_64",
          "4ES:perl-debuginfo-3:5.8.5-24.RHEL4.i386",
          "4ES:perl-debuginfo-3:5.8.5-24.RHEL4.ia64",
          "4ES:perl-debuginfo-3:5.8.5-24.RHEL4.ppc",
          "4ES:perl-debuginfo-3:5.8.5-24.RHEL4.s390",
          "4ES:perl-debuginfo-3:5.8.5-24.RHEL4.s390x",
          "4ES:perl-debuginfo-3:5.8.5-24.RHEL4.x86_64",
          "4ES:perl-suidperl-3:5.8.5-24.RHEL4.i386",
          "4ES:perl-suidperl-3:5.8.5-24.RHEL4.ia64",
          "4ES:perl-suidperl-3:5.8.5-24.RHEL4.ppc",
          "4ES:perl-suidperl-3:5.8.5-24.RHEL4.s390",
          "4ES:perl-suidperl-3:5.8.5-24.RHEL4.s390x",
          "4ES:perl-suidperl-3:5.8.5-24.RHEL4.x86_64",
          "4WS:perl-3:5.8.5-24.RHEL4.i386",
          "4WS:perl-3:5.8.5-24.RHEL4.ia64",
          "4WS:perl-3:5.8.5-24.RHEL4.ppc",
          "4WS:perl-3:5.8.5-24.RHEL4.s390",
          "4WS:perl-3:5.8.5-24.RHEL4.s390x",
          "4WS:perl-3:5.8.5-24.RHEL4.src",
          "4WS:perl-3:5.8.5-24.RHEL4.x86_64",
          "4WS:perl-debuginfo-3:5.8.5-24.RHEL4.i386",
          "4WS:perl-debuginfo-3:5.8.5-24.RHEL4.ia64",
          "4WS:perl-debuginfo-3:5.8.5-24.RHEL4.ppc",
          "4WS:perl-debuginfo-3:5.8.5-24.RHEL4.s390",
          "4WS:perl-debuginfo-3:5.8.5-24.RHEL4.s390x",
          "4WS:perl-debuginfo-3:5.8.5-24.RHEL4.x86_64",
          "4WS:perl-suidperl-3:5.8.5-24.RHEL4.i386",
          "4WS:perl-suidperl-3:5.8.5-24.RHEL4.ia64",
          "4WS:perl-suidperl-3:5.8.5-24.RHEL4.ppc",
          "4WS:perl-suidperl-3:5.8.5-24.RHEL4.s390",
          "4WS:perl-suidperl-3:5.8.5-24.RHEL4.s390x",
          "4WS:perl-suidperl-3:5.8.5-24.RHEL4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2005-3962"
        },
        {
          "category": "external",
          "summary": "RHBZ#1617848",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617848"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2005-3962",
          "url": "https://www.cve.org/CVERecord?id=CVE-2005-3962"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2005-3962",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-3962"
        }
      ],
      "release_date": "2005-12-01T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2005-12-20T14:33:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network.  To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "4AS:perl-3:5.8.5-24.RHEL4.i386",
            "4AS:perl-3:5.8.5-24.RHEL4.ia64",
            "4AS:perl-3:5.8.5-24.RHEL4.ppc",
            "4AS:perl-3:5.8.5-24.RHEL4.s390",
            "4AS:perl-3:5.8.5-24.RHEL4.s390x",
            "4AS:perl-3:5.8.5-24.RHEL4.src",
            "4AS:perl-3:5.8.5-24.RHEL4.x86_64",
            "4AS:perl-debuginfo-3:5.8.5-24.RHEL4.i386",
            "4AS:perl-debuginfo-3:5.8.5-24.RHEL4.ia64",
            "4AS:perl-debuginfo-3:5.8.5-24.RHEL4.ppc",
            "4AS:perl-debuginfo-3:5.8.5-24.RHEL4.s390",
            "4AS:perl-debuginfo-3:5.8.5-24.RHEL4.s390x",
            "4AS:perl-debuginfo-3:5.8.5-24.RHEL4.x86_64",
            "4AS:perl-suidperl-3:5.8.5-24.RHEL4.i386",
            "4AS:perl-suidperl-3:5.8.5-24.RHEL4.ia64",
            "4AS:perl-suidperl-3:5.8.5-24.RHEL4.ppc",
            "4AS:perl-suidperl-3:5.8.5-24.RHEL4.s390",
            "4AS:perl-suidperl-3:5.8.5-24.RHEL4.s390x",
            "4AS:perl-suidperl-3:5.8.5-24.RHEL4.x86_64",
            "4Desktop:perl-3:5.8.5-24.RHEL4.i386",
            "4Desktop:perl-3:5.8.5-24.RHEL4.ia64",
            "4Desktop:perl-3:5.8.5-24.RHEL4.ppc",
            "4Desktop:perl-3:5.8.5-24.RHEL4.s390",
            "4Desktop:perl-3:5.8.5-24.RHEL4.s390x",
            "4Desktop:perl-3:5.8.5-24.RHEL4.src",
            "4Desktop:perl-3:5.8.5-24.RHEL4.x86_64",
            "4Desktop:perl-debuginfo-3:5.8.5-24.RHEL4.i386",
            "4Desktop:perl-debuginfo-3:5.8.5-24.RHEL4.ia64",
            "4Desktop:perl-debuginfo-3:5.8.5-24.RHEL4.ppc",
            "4Desktop:perl-debuginfo-3:5.8.5-24.RHEL4.s390",
            "4Desktop:perl-debuginfo-3:5.8.5-24.RHEL4.s390x",
            "4Desktop:perl-debuginfo-3:5.8.5-24.RHEL4.x86_64",
            "4Desktop:perl-suidperl-3:5.8.5-24.RHEL4.i386",
            "4Desktop:perl-suidperl-3:5.8.5-24.RHEL4.ia64",
            "4Desktop:perl-suidperl-3:5.8.5-24.RHEL4.ppc",
            "4Desktop:perl-suidperl-3:5.8.5-24.RHEL4.s390",
            "4Desktop:perl-suidperl-3:5.8.5-24.RHEL4.s390x",
            "4Desktop:perl-suidperl-3:5.8.5-24.RHEL4.x86_64",
            "4ES:perl-3:5.8.5-24.RHEL4.i386",
            "4ES:perl-3:5.8.5-24.RHEL4.ia64",
            "4ES:perl-3:5.8.5-24.RHEL4.ppc",
            "4ES:perl-3:5.8.5-24.RHEL4.s390",
            "4ES:perl-3:5.8.5-24.RHEL4.s390x",
            "4ES:perl-3:5.8.5-24.RHEL4.src",
            "4ES:perl-3:5.8.5-24.RHEL4.x86_64",
            "4ES:perl-debuginfo-3:5.8.5-24.RHEL4.i386",
            "4ES:perl-debuginfo-3:5.8.5-24.RHEL4.ia64",
            "4ES:perl-debuginfo-3:5.8.5-24.RHEL4.ppc",
            "4ES:perl-debuginfo-3:5.8.5-24.RHEL4.s390",
            "4ES:perl-debuginfo-3:5.8.5-24.RHEL4.s390x",
            "4ES:perl-debuginfo-3:5.8.5-24.RHEL4.x86_64",
            "4ES:perl-suidperl-3:5.8.5-24.RHEL4.i386",
            "4ES:perl-suidperl-3:5.8.5-24.RHEL4.ia64",
            "4ES:perl-suidperl-3:5.8.5-24.RHEL4.ppc",
            "4ES:perl-suidperl-3:5.8.5-24.RHEL4.s390",
            "4ES:perl-suidperl-3:5.8.5-24.RHEL4.s390x",
            "4ES:perl-suidperl-3:5.8.5-24.RHEL4.x86_64",
            "4WS:perl-3:5.8.5-24.RHEL4.i386",
            "4WS:perl-3:5.8.5-24.RHEL4.ia64",
            "4WS:perl-3:5.8.5-24.RHEL4.ppc",
            "4WS:perl-3:5.8.5-24.RHEL4.s390",
            "4WS:perl-3:5.8.5-24.RHEL4.s390x",
            "4WS:perl-3:5.8.5-24.RHEL4.src",
            "4WS:perl-3:5.8.5-24.RHEL4.x86_64",
            "4WS:perl-debuginfo-3:5.8.5-24.RHEL4.i386",
            "4WS:perl-debuginfo-3:5.8.5-24.RHEL4.ia64",
            "4WS:perl-debuginfo-3:5.8.5-24.RHEL4.ppc",
            "4WS:perl-debuginfo-3:5.8.5-24.RHEL4.s390",
            "4WS:perl-debuginfo-3:5.8.5-24.RHEL4.s390x",
            "4WS:perl-debuginfo-3:5.8.5-24.RHEL4.x86_64",
            "4WS:perl-suidperl-3:5.8.5-24.RHEL4.i386",
            "4WS:perl-suidperl-3:5.8.5-24.RHEL4.ia64",
            "4WS:perl-suidperl-3:5.8.5-24.RHEL4.ppc",
            "4WS:perl-suidperl-3:5.8.5-24.RHEL4.s390",
            "4WS:perl-suidperl-3:5.8.5-24.RHEL4.s390x",
            "4WS:perl-suidperl-3:5.8.5-24.RHEL4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2005:880"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "security flaw"
    }
  ]
}

gsd-2005-3962

Vulnerability from gsd

Modified

2023-12-13 01:20

Details

Aliases

CVE-2005-3962

Aliases

CVE-2005-3962

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2005-3962",
    "description": "Integer overflow in the format string functionality (Perl_sv_vcatpvfn) in Perl 5.9.2 and 5.8.6 Perl allows attackers to overwrite arbitrary memory and possibly execute arbitrary code via format string specifiers with large values, which causes an integer wrap and leads to a buffer overflow, as demonstrated using format string vulnerabilities in Perl applications.",
    "id": "GSD-2005-3962",
    "references": [
      "https://www.suse.com/security/cve/CVE-2005-3962.html",
      "https://www.debian.org/security/2006/dsa-943",
      "https://access.redhat.com/errata/RHSA-2005:881",
      "https://access.redhat.com/errata/RHSA-2005:880"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2005-3962"
      ],
      "details": "Integer overflow in the format string functionality (Perl_sv_vcatpvfn) in Perl 5.9.2 and 5.8.6 Perl allows attackers to overwrite arbitrary memory and possibly execute arbitrary code via format string specifiers with large values, which causes an integer wrap and leads to a buffer overflow, as demonstrated using format string vulnerabilities in Perl applications.",
      "id": "GSD-2005-3962",
      "modified": "2023-12-13T01:20:12.269747Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secalert@redhat.com",
        "ID": "CVE-2005-3962",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "=",
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Integer overflow in the format string functionality (Perl_sv_vcatpvfn) in Perl 5.9.2 and 5.8.6 Perl allows attackers to overwrite arbitrary memory and possibly execute arbitrary code via format string specifiers with large values, which causes an integer wrap and leads to a buffer overflow, as demonstrated using format string vulnerabilities in Perl applications."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "ftp://patches.sgi.com/support/free/security/advisories/20060101-01-U",
            "refsource": "MISC",
            "url": "ftp://patches.sgi.com/support/free/security/advisories/20060101-01-U"
          },
          {
            "name": "http://secunia.com/advisories/18517",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/18517"
          },
          {
            "name": "http://docs.info.apple.com/article.html?artnum=304829",
            "refsource": "MISC",
            "url": "http://docs.info.apple.com/article.html?artnum=304829"
          },
          {
            "name": "http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html",
            "refsource": "MISC",
            "url": "http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html"
          },
          {
            "name": "http://secunia.com/advisories/23155",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/23155"
          },
          {
            "name": "http://www.us-cert.gov/cas/techalerts/TA06-333A.html",
            "refsource": "MISC",
            "url": "http://www.us-cert.gov/cas/techalerts/TA06-333A.html"
          },
          {
            "name": "http://www.vupen.com/english/advisories/2006/4750",
            "refsource": "MISC",
            "url": "http://www.vupen.com/english/advisories/2006/4750"
          },
          {
            "name": "http://support.avaya.com/elmodocs2/security/ASA-2006-081.htm",
            "refsource": "MISC",
            "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-081.htm"
          },
          {
            "name": "ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.7/common/007_perl.patch",
            "refsource": "MISC",
            "url": "ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.7/common/007_perl.patch"
          },
          {
            "name": "ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.8/common/001_perl.patch",
            "refsource": "MISC",
            "url": "ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.8/common/001_perl.patch"
          },
          {
            "name": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=001056",
            "refsource": "MISC",
            "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=001056"
          },
          {
            "name": "http://marc.info/?l=full-disclosure\u0026m=113342788118630\u0026w=2",
            "refsource": "MISC",
            "url": "http://marc.info/?l=full-disclosure\u0026m=113342788118630\u0026w=2"
          },
          {
            "name": "http://secunia.com/advisories/17762",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/17762"
          },
          {
            "name": "http://secunia.com/advisories/17802",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/17802"
          },
          {
            "name": "http://secunia.com/advisories/17844",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/17844"
          },
          {
            "name": "http://secunia.com/advisories/17941",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/17941"
          },
          {
            "name": "http://secunia.com/advisories/17952",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/17952"
          },
          {
            "name": "http://secunia.com/advisories/17993",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/17993"
          },
          {
            "name": "http://secunia.com/advisories/18075",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/18075"
          },
          {
            "name": "http://secunia.com/advisories/18183",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/18183"
          },
          {
            "name": "http://secunia.com/advisories/18187",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/18187"
          },
          {
            "name": "http://secunia.com/advisories/18295",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/18295"
          },
          {
            "name": "http://secunia.com/advisories/18413",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/18413"
          },
          {
            "name": "http://secunia.com/advisories/19041",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/19041"
          },
          {
            "name": "http://secunia.com/advisories/20894",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/20894"
          },
          {
            "name": "http://secunia.com/advisories/31208",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/31208"
          },
          {
            "name": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102192-1",
            "refsource": "MISC",
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102192-1"
          },
          {
            "name": "http://www.debian.org/security/2006/dsa-943",
            "refsource": "MISC",
            "url": "http://www.debian.org/security/2006/dsa-943"
          },
          {
            "name": "http://www.dyadsecurity.com/perl-0002.html",
            "refsource": "MISC",
            "url": "http://www.dyadsecurity.com/perl-0002.html"
          },
          {
            "name": "http://www.gentoo.org/security/en/glsa/glsa-200512-01.xml",
            "refsource": "MISC",
            "url": "http://www.gentoo.org/security/en/glsa/glsa-200512-01.xml"
          },
          {
            "name": "http://www.ipcop.org/index.php?name=News\u0026file=article\u0026sid=41",
            "refsource": "MISC",
            "url": "http://www.ipcop.org/index.php?name=News\u0026file=article\u0026sid=41"
          },
          {
            "name": "http://www.kb.cert.org/vuls/id/948385",
            "refsource": "MISC",
            "url": "http://www.kb.cert.org/vuls/id/948385"
          },
          {
            "name": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:225",
            "refsource": "MISC",
            "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:225"
          },
          {
            "name": "http://www.novell.com/linux/security/advisories/2005_29_sr.html",
            "refsource": "MISC",
            "url": "http://www.novell.com/linux/security/advisories/2005_29_sr.html"
          },
          {
            "name": "http://www.novell.com/linux/security/advisories/2005_71_perl.html",
            "refsource": "MISC",
            "url": "http://www.novell.com/linux/security/advisories/2005_71_perl.html"
          },
          {
            "name": "http://www.openbsd.org/errata37.html#perl",
            "refsource": "MISC",
            "url": "http://www.openbsd.org/errata37.html#perl"
          },
          {
            "name": "http://www.openpkg.org/security/OpenPKG-SA-2005.025-perl.html",
            "refsource": "MISC",
            "url": "http://www.openpkg.org/security/OpenPKG-SA-2005.025-perl.html"
          },
          {
            "name": "http://www.osvdb.org/21345",
            "refsource": "MISC",
            "url": "http://www.osvdb.org/21345"
          },
          {
            "name": "http://www.osvdb.org/22255",
            "refsource": "MISC",
            "url": "http://www.osvdb.org/22255"
          },
          {
            "name": "http://www.redhat.com/support/errata/RHSA-2005-880.html",
            "refsource": "MISC",
            "url": "http://www.redhat.com/support/errata/RHSA-2005-880.html"
          },
          {
            "name": "http://www.redhat.com/support/errata/RHSA-2005-881.html",
            "refsource": "MISC",
            "url": "http://www.redhat.com/support/errata/RHSA-2005-881.html"
          },
          {
            "name": "http://www.securityfocus.com/archive/1/418333/100/0/threaded",
            "refsource": "MISC",
            "url": "http://www.securityfocus.com/archive/1/418333/100/0/threaded"
          },
          {
            "name": "http://www.securityfocus.com/archive/1/438726/100/0/threaded",
            "refsource": "MISC",
            "url": "http://www.securityfocus.com/archive/1/438726/100/0/threaded"
          },
          {
            "name": "http://www.securityfocus.com/bid/15629",
            "refsource": "MISC",
            "url": "http://www.securityfocus.com/bid/15629"
          },
          {
            "name": "http://www.trustix.org/errata/2005/0070",
            "refsource": "MISC",
            "url": "http://www.trustix.org/errata/2005/0070"
          },
          {
            "name": "http://www.vupen.com/english/advisories/2005/2688",
            "refsource": "MISC",
            "url": "http://www.vupen.com/english/advisories/2005/2688"
          },
          {
            "name": "http://www.vupen.com/english/advisories/2006/0771",
            "refsource": "MISC",
            "url": "http://www.vupen.com/english/advisories/2006/0771"
          },
          {
            "name": "http://www.vupen.com/english/advisories/2006/2613",
            "refsource": "MISC",
            "url": "http://www.vupen.com/english/advisories/2006/2613"
          },
          {
            "name": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10598",
            "refsource": "MISC",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10598"
          },
          {
            "name": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1074",
            "refsource": "MISC",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1074"
          },
          {
            "name": "https://usn.ubuntu.com/222-1/",
            "refsource": "MISC",
            "url": "https://usn.ubuntu.com/222-1/"
          },
          {
            "name": "https://www.redhat.com/archives/fedora-legacy-announce/2006-February/msg00008.html",
            "refsource": "MISC",
            "url": "https://www.redhat.com/archives/fedora-legacy-announce/2006-February/msg00008.html"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:perl:perl:5.8.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:perl:perl:5.9.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2005-3962"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Integer overflow in the format string functionality (Perl_sv_vcatpvfn) in Perl 5.9.2 and 5.8.6 Perl allows attackers to overwrite arbitrary memory and possibly execute arbitrary code via format string specifiers with large values, which causes an integer wrap and leads to a buffer overflow, as demonstrated using format string vulnerabilities in Perl applications."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-189"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.dyadsecurity.com/perl-0002.html",
              "refsource": "MISC",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www.dyadsecurity.com/perl-0002.html"
            },
            {
              "name": "VU#948385",
              "refsource": "CERT-VN",
              "tags": [
                "US Government Resource"
              ],
              "url": "http://www.kb.cert.org/vuls/id/948385"
            },
            {
              "name": "15629",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/15629"
            },
            {
              "name": "17802",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/17802"
            },
            {
              "name": "17844",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/17844"
            },
            {
              "name": "17762",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/17762"
            },
            {
              "name": "OpenPKG-SA-2005.025",
              "refsource": "OPENPKG",
              "tags": [],
              "url": "http://www.openpkg.org/security/OpenPKG-SA-2005.025-perl.html"
            },
            {
              "name": "GLSA-200512-01",
              "refsource": "GENTOO",
              "tags": [],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200512-01.xml"
            },
            {
              "name": "TSLSA-2005-0070",
              "refsource": "TRUSTIX",
              "tags": [],
              "url": "http://www.trustix.org/errata/2005/0070"
            },
            {
              "name": "17941",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/17941"
            },
            {
              "name": "17952",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/17952"
            },
            {
              "name": "RHSA-2005:880",
              "refsource": "REDHAT",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2005-880.html"
            },
            {
              "name": "SUSE-SA:2005:071",
              "refsource": "SUSE",
              "tags": [],
              "url": "http://www.novell.com/linux/security/advisories/2005_71_perl.html"
            },
            {
              "name": "18183",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/18183"
            },
            {
              "name": "18187",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/18187"
            },
            {
              "name": "RHSA-2005:881",
              "refsource": "REDHAT",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2005-881.html"
            },
            {
              "name": "18075",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/18075"
            },
            {
              "name": "[3.7] 20060105 007: SECURITY FIX: January 5, 2006",
              "refsource": "OPENBSD",
              "tags": [],
              "url": "http://www.openbsd.org/errata37.html#perl"
            },
            {
              "name": "18295",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/18295"
            },
            {
              "name": "ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.8/common/001_perl.patch",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.8/common/001_perl.patch"
            },
            {
              "name": "21345",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://www.osvdb.org/21345"
            },
            {
              "name": "22255",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://www.osvdb.org/22255"
            },
            {
              "name": "20060101-01-U",
              "refsource": "SGI",
              "tags": [],
              "url": "ftp://patches.sgi.com/support/free/security/advisories/20060101-01-U"
            },
            {
              "name": "18517",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/18517"
            },
            {
              "name": "17993",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/17993"
            },
            {
              "name": "FLSA-2006:176731",
              "refsource": "FEDORA",
              "tags": [],
              "url": "https://www.redhat.com/archives/fedora-legacy-announce/2006-February/msg00008.html"
            },
            {
              "name": "102192",
              "refsource": "SUNALERT",
              "tags": [],
              "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102192-1"
            },
            {
              "name": "19041",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/19041"
            },
            {
              "name": "DSA-943",
              "refsource": "DEBIAN",
              "tags": [],
              "url": "http://www.debian.org/security/2006/dsa-943"
            },
            {
              "name": "18413",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/18413"
            },
            {
              "name": "CLSA-2006:1056",
              "refsource": "CONECTIVA",
              "tags": [],
              "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=001056"
            },
            {
              "name": "http://support.avaya.com/elmodocs2/security/ASA-2006-081.htm",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-081.htm"
            },
            {
              "name": "SUSE-SR:2005:029",
              "refsource": "SUSE",
              "tags": [],
              "url": "http://www.novell.com/linux/security/advisories/2005_29_sr.html"
            },
            {
              "name": "20894",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/20894"
            },
            {
              "name": "http://docs.info.apple.com/article.html?artnum=304829",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://docs.info.apple.com/article.html?artnum=304829"
            },
            {
              "name": "APPLE-SA-2006-11-28",
              "refsource": "APPLE",
              "tags": [],
              "url": "http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html"
            },
            {
              "name": "TA06-333A",
              "refsource": "CERT",
              "tags": [
                "US Government Resource"
              ],
              "url": "http://www.us-cert.gov/cas/techalerts/TA06-333A.html"
            },
            {
              "name": "23155",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/23155"
            },
            {
              "name": "MDKSA-2005:225",
              "refsource": "MANDRAKE",
              "tags": [],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:225"
            },
            {
              "name": "http://www.ipcop.org/index.php?name=News\u0026file=article\u0026sid=41",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://www.ipcop.org/index.php?name=News\u0026file=article\u0026sid=41"
            },
            {
              "name": "31208",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/31208"
            },
            {
              "name": "ADV-2006-2613",
              "refsource": "VUPEN",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/2613"
            },
            {
              "name": "ADV-2006-0771",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2006/0771"
            },
            {
              "name": "ADV-2006-4750",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2006/4750"
            },
            {
              "name": "ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.7/common/007_perl.patch",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.7/common/007_perl.patch"
            },
            {
              "name": "ADV-2005-2688",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2005/2688"
            },
            {
              "name": "20051201 Perl format string integer wrap vulnerability",
              "refsource": "FULLDISC",
              "tags": [],
              "url": "http://marc.info/?l=full-disclosure\u0026m=113342788118630\u0026w=2"
            },
            {
              "name": "oval:org.mitre.oval:def:1074",
              "refsource": "OVAL",
              "tags": [],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1074"
            },
            {
              "name": "oval:org.mitre.oval:def:10598",
              "refsource": "OVAL",
              "tags": [],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10598"
            },
            {
              "name": "USN-222-1",
              "refsource": "UBUNTU",
              "tags": [],
              "url": "https://usn.ubuntu.com/222-1/"
            },
            {
              "name": "HPSBTU02125",
              "refsource": "HP",
              "tags": [],
              "url": "http://www.securityfocus.com/archive/1/438726/100/0/threaded"
            },
            {
              "name": "20051201 Perl format string integer wrap vulnerability",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://www.securityfocus.com/archive/1/418333/100/0/threaded"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 4.6,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": true,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2018-10-19T15:39Z",
      "publishedDate": "2005-12-01T17:03Z"
    }
  }
}

ghsa-x9vv-cmfc-4qwh

Vulnerability from github

Published

2022-05-03 03:14

Modified

2022-05-03 03:14

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2005-3962"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2005-12-01T17:03:00Z",
    "severity": "MODERATE"
  },
  "details": "Integer overflow in the format string functionality (Perl_sv_vcatpvfn) in Perl 5.9.2 and 5.8.6 Perl allows attackers to overwrite arbitrary memory and possibly execute arbitrary code via format string specifiers with large values, which causes an integer wrap and leads to a buffer overflow, as demonstrated using format string vulnerabilities in Perl applications.",
  "id": "GHSA-x9vv-cmfc-4qwh",
  "modified": "2022-05-03T03:14:36Z",
  "published": "2022-05-03T03:14:36Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-3962"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10598"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1074"
    },
    {
      "type": "WEB",
      "url": "https://usn.ubuntu.com/222-1"
    },
    {
      "type": "WEB",
      "url": "https://www.redhat.com/archives/fedora-legacy-announce/2006-February/msg00008.html"
    },
    {
      "type": "WEB",
      "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=001056"
    },
    {
      "type": "WEB",
      "url": "http://docs.info.apple.com/article.html?artnum=304829"
    },
    {
      "type": "WEB",
      "url": "http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html"
    },
    {
      "type": "WEB",
      "url": "http://marc.info/?l=full-disclosure\u0026m=113342788118630\u0026w=2"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/17762"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/17802"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/17844"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/17941"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/17952"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/17993"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/18075"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/18183"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/18187"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/18295"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/18413"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/18517"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/19041"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/20894"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/23155"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/31208"
    },
    {
      "type": "WEB",
      "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102192-1"
    },
    {
      "type": "WEB",
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-081.htm"
    },
    {
      "type": "WEB",
      "url": "http://www.debian.org/security/2006/dsa-943"
    },
    {
      "type": "WEB",
      "url": "http://www.dyadsecurity.com/perl-0002.html"
    },
    {
      "type": "WEB",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200512-01.xml"
    },
    {
      "type": "WEB",
      "url": "http://www.ipcop.org/index.php?name=News\u0026file=article\u0026sid=41"
    },
    {
      "type": "WEB",
      "url": "http://www.kb.cert.org/vuls/id/948385"
    },
    {
      "type": "WEB",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:225"
    },
    {
      "type": "WEB",
      "url": "http://www.novell.com/linux/security/advisories/2005_29_sr.html"
    },
    {
      "type": "WEB",
      "url": "http://www.novell.com/linux/security/advisories/2005_71_perl.html"
    },
    {
      "type": "WEB",
      "url": "http://www.openbsd.org/errata37.html#perl"
    },
    {
      "type": "WEB",
      "url": "http://www.openpkg.org/security/OpenPKG-SA-2005.025-perl.html"
    },
    {
      "type": "WEB",
      "url": "http://www.osvdb.org/21345"
    },
    {
      "type": "WEB",
      "url": "http://www.osvdb.org/22255"
    },
    {
      "type": "WEB",
      "url": "http://www.redhat.com/support/errata/RHSA-2005-880.html"
    },
    {
      "type": "WEB",
      "url": "http://www.redhat.com/support/errata/RHSA-2005-881.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/archive/1/418333/100/0/threaded"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/archive/1/438726/100/0/threaded"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/15629"
    },
    {
      "type": "WEB",
      "url": "http://www.trustix.org/errata/2005/0070"
    },
    {
      "type": "WEB",
      "url": "http://www.us-cert.gov/cas/techalerts/TA06-333A.html"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2005/2688"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2006/0771"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2006/2613"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2006/4750"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

fkie_cve-2005-3962

Vulnerability from fkie_nvd

Published

2005-12-01 17:03

Modified

2025-04-03 01:03

Severity ?

Summary

References

URL	Tags
secalert@redhat.com	ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.7/common/007_perl.patch
secalert@redhat.com	ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.8/common/001_perl.patch
secalert@redhat.com	ftp://patches.sgi.com/support/free/security/advisories/20060101-01-U
secalert@redhat.com	http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=001056
secalert@redhat.com	http://docs.info.apple.com/article.html?artnum=304829
secalert@redhat.com	http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html
secalert@redhat.com	http://marc.info/?l=full-disclosure&m=113342788118630&w=2
secalert@redhat.com	http://secunia.com/advisories/17762	Vendor Advisory
secalert@redhat.com	http://secunia.com/advisories/17802	Vendor Advisory
secalert@redhat.com	http://secunia.com/advisories/17844	Vendor Advisory
secalert@redhat.com	http://secunia.com/advisories/17941	Vendor Advisory
secalert@redhat.com	http://secunia.com/advisories/17952	Vendor Advisory
secalert@redhat.com	http://secunia.com/advisories/17993	Vendor Advisory
secalert@redhat.com	http://secunia.com/advisories/18075	Vendor Advisory
secalert@redhat.com	http://secunia.com/advisories/18183	Vendor Advisory
secalert@redhat.com	http://secunia.com/advisories/18187	Vendor Advisory
secalert@redhat.com	http://secunia.com/advisories/18295	Vendor Advisory
secalert@redhat.com	http://secunia.com/advisories/18413	Vendor Advisory
secalert@redhat.com	http://secunia.com/advisories/18517	Vendor Advisory
secalert@redhat.com	http://secunia.com/advisories/19041	Vendor Advisory
secalert@redhat.com	http://secunia.com/advisories/20894	Vendor Advisory
secalert@redhat.com	http://secunia.com/advisories/23155	Vendor Advisory
secalert@redhat.com	http://secunia.com/advisories/31208	Vendor Advisory
secalert@redhat.com	http://sunsolve.sun.com/search/document.do?assetkey=1-26-102192-1
secalert@redhat.com	http://support.avaya.com/elmodocs2/security/ASA-2006-081.htm
secalert@redhat.com	http://www.debian.org/security/2006/dsa-943
secalert@redhat.com	http://www.dyadsecurity.com/perl-0002.html	Patch, Vendor Advisory
secalert@redhat.com	http://www.gentoo.org/security/en/glsa/glsa-200512-01.xml
secalert@redhat.com	http://www.ipcop.org/index.php?name=News&file=article&sid=41
secalert@redhat.com	http://www.kb.cert.org/vuls/id/948385	US Government Resource
secalert@redhat.com	http://www.mandriva.com/security/advisories?name=MDKSA-2005:225
secalert@redhat.com	http://www.novell.com/linux/security/advisories/2005_29_sr.html
secalert@redhat.com	http://www.novell.com/linux/security/advisories/2005_71_perl.html
secalert@redhat.com	http://www.openbsd.org/errata37.html#perl
secalert@redhat.com	http://www.openpkg.org/security/OpenPKG-SA-2005.025-perl.html
secalert@redhat.com	http://www.osvdb.org/21345
secalert@redhat.com	http://www.osvdb.org/22255
secalert@redhat.com	http://www.redhat.com/support/errata/RHSA-2005-880.html	Vendor Advisory
secalert@redhat.com	http://www.redhat.com/support/errata/RHSA-2005-881.html	Vendor Advisory
secalert@redhat.com	http://www.securityfocus.com/archive/1/418333/100/0/threaded
secalert@redhat.com	http://www.securityfocus.com/archive/1/438726/100/0/threaded
secalert@redhat.com	http://www.securityfocus.com/archive/1/438726/100/0/threaded
secalert@redhat.com	http://www.securityfocus.com/bid/15629
secalert@redhat.com	http://www.trustix.org/errata/2005/0070
secalert@redhat.com	http://www.us-cert.gov/cas/techalerts/TA06-333A.html	US Government Resource
secalert@redhat.com	http://www.vupen.com/english/advisories/2005/2688
secalert@redhat.com	http://www.vupen.com/english/advisories/2006/0771
secalert@redhat.com	http://www.vupen.com/english/advisories/2006/2613	Vendor Advisory
secalert@redhat.com	http://www.vupen.com/english/advisories/2006/4750
secalert@redhat.com	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10598
secalert@redhat.com	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1074
secalert@redhat.com	https://usn.ubuntu.com/222-1/
secalert@redhat.com	https://www.redhat.com/archives/fedora-legacy-announce/2006-February/msg00008.html
af854a3a-2127-422b-91ae-364da2661108	ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.7/common/007_perl.patch
af854a3a-2127-422b-91ae-364da2661108	ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.8/common/001_perl.patch
af854a3a-2127-422b-91ae-364da2661108	ftp://patches.sgi.com/support/free/security/advisories/20060101-01-U
af854a3a-2127-422b-91ae-364da2661108	http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=001056
af854a3a-2127-422b-91ae-364da2661108	http://docs.info.apple.com/article.html?artnum=304829
af854a3a-2127-422b-91ae-364da2661108	http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html
af854a3a-2127-422b-91ae-364da2661108	http://marc.info/?l=full-disclosure&m=113342788118630&w=2
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/17762	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/17802	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/17844	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/17941	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/17952	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/17993	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/18075	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/18183	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/18187	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/18295	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/18413	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/18517	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/19041	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/20894	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/23155	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/31208	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://sunsolve.sun.com/search/document.do?assetkey=1-26-102192-1
af854a3a-2127-422b-91ae-364da2661108	http://support.avaya.com/elmodocs2/security/ASA-2006-081.htm
af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2006/dsa-943
af854a3a-2127-422b-91ae-364da2661108	http://www.dyadsecurity.com/perl-0002.html	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.gentoo.org/security/en/glsa/glsa-200512-01.xml
af854a3a-2127-422b-91ae-364da2661108	http://www.ipcop.org/index.php?name=News&file=article&sid=41
af854a3a-2127-422b-91ae-364da2661108	http://www.kb.cert.org/vuls/id/948385	US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.mandriva.com/security/advisories?name=MDKSA-2005:225
af854a3a-2127-422b-91ae-364da2661108	http://www.novell.com/linux/security/advisories/2005_29_sr.html
af854a3a-2127-422b-91ae-364da2661108	http://www.novell.com/linux/security/advisories/2005_71_perl.html
af854a3a-2127-422b-91ae-364da2661108	http://www.openbsd.org/errata37.html#perl
af854a3a-2127-422b-91ae-364da2661108	http://www.openpkg.org/security/OpenPKG-SA-2005.025-perl.html
af854a3a-2127-422b-91ae-364da2661108	http://www.osvdb.org/21345
af854a3a-2127-422b-91ae-364da2661108	http://www.osvdb.org/22255
af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/support/errata/RHSA-2005-880.html	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/support/errata/RHSA-2005-881.html	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/418333/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/438726/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/438726/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/15629
af854a3a-2127-422b-91ae-364da2661108	http://www.trustix.org/errata/2005/0070
af854a3a-2127-422b-91ae-364da2661108	http://www.us-cert.gov/cas/techalerts/TA06-333A.html	US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2005/2688
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/0771
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/2613	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/4750
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10598
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1074
af854a3a-2127-422b-91ae-364da2661108	https://usn.ubuntu.com/222-1/
af854a3a-2127-422b-91ae-364da2661108	https://www.redhat.com/archives/fedora-legacy-announce/2006-February/msg00008.html

Impacted products

	Vendor	Product	Version
	perl	perl	5.8.6
	perl	perl	5.9.2

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:perl:perl:5.8.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "53F0358E-0722-48A6-A2C6-470229602089",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:perl:perl:5.9.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "DF69341A-4D00-424E-AD0F-FA7515278770",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Integer overflow in the format string functionality (Perl_sv_vcatpvfn) in Perl 5.9.2 and 5.8.6 Perl allows attackers to overwrite arbitrary memory and possibly execute arbitrary code via format string specifiers with large values, which causes an integer wrap and leads to a buffer overflow, as demonstrated using format string vulnerabilities in Perl applications."
    }
  ],
  "id": "CVE-2005-3962",
  "lastModified": "2025-04-03T01:03:51.193",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 4.6,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": true,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2005-12-01T17:03:00.000",
  "references": [
    {
      "source": "secalert@redhat.com",
      "url": "ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.7/common/007_perl.patch"
    },
    {
      "source": "secalert@redhat.com",
      "url": "ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.8/common/001_perl.patch"
    },
    {
      "source": "secalert@redhat.com",
      "url": "ftp://patches.sgi.com/support/free/security/advisories/20060101-01-U"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=001056"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://docs.info.apple.com/article.html?artnum=304829"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://marc.info/?l=full-disclosure\u0026m=113342788118630\u0026w=2"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/17762"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/17802"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/17844"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/17941"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/17952"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/17993"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/18075"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/18183"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/18187"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/18295"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/18413"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/18517"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/19041"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/20894"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/23155"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/31208"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102192-1"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-081.htm"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.debian.org/security/2006/dsa-943"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.dyadsecurity.com/perl-0002.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200512-01.xml"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.ipcop.org/index.php?name=News\u0026file=article\u0026sid=41"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/948385"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:225"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.novell.com/linux/security/advisories/2005_29_sr.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.novell.com/linux/security/advisories/2005_71_perl.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.openbsd.org/errata37.html#perl"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.openpkg.org/security/OpenPKG-SA-2005.025-perl.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.osvdb.org/21345"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.osvdb.org/22255"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.redhat.com/support/errata/RHSA-2005-880.html"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.redhat.com/support/errata/RHSA-2005-881.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.securityfocus.com/archive/1/418333/100/0/threaded"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.securityfocus.com/archive/1/438726/100/0/threaded"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.securityfocus.com/archive/1/438726/100/0/threaded"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.securityfocus.com/bid/15629"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.trustix.org/errata/2005/0070"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.us-cert.gov/cas/techalerts/TA06-333A.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.vupen.com/english/advisories/2005/2688"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.vupen.com/english/advisories/2006/0771"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.vupen.com/english/advisories/2006/2613"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.vupen.com/english/advisories/2006/4750"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10598"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1074"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://usn.ubuntu.com/222-1/"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://www.redhat.com/archives/fedora-legacy-announce/2006-February/msg00008.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.7/common/007_perl.patch"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.8/common/001_perl.patch"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "ftp://patches.sgi.com/support/free/security/advisories/20060101-01-U"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=001056"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://docs.info.apple.com/article.html?artnum=304829"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://marc.info/?l=full-disclosure\u0026m=113342788118630\u0026w=2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/17762"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/17802"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/17844"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/17941"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/17952"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/17993"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/18075"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/18183"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/18187"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/18295"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/18413"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/18517"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/19041"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/20894"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/23155"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/31208"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102192-1"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-081.htm"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2006/dsa-943"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.dyadsecurity.com/perl-0002.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200512-01.xml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.ipcop.org/index.php?name=News\u0026file=article\u0026sid=41"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/948385"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:225"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.novell.com/linux/security/advisories/2005_29_sr.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.novell.com/linux/security/advisories/2005_71_perl.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.openbsd.org/errata37.html#perl"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.openpkg.org/security/OpenPKG-SA-2005.025-perl.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.osvdb.org/21345"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.osvdb.org/22255"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.redhat.com/support/errata/RHSA-2005-880.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.redhat.com/support/errata/RHSA-2005-881.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/418333/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/438726/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/438726/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/15629"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.trustix.org/errata/2005/0070"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.us-cert.gov/cas/techalerts/TA06-333A.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2005/2688"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2006/0771"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.vupen.com/english/advisories/2006/2613"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2006/4750"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10598"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1074"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://usn.ubuntu.com/222-1/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://www.redhat.com/archives/fedora-legacy-announce/2006-February/msg00008.html"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-189"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

opensuse-su-2024:11158-1

Vulnerability from csaf_opensuse

Published

2024-06-15 00:00

Modified

2024-06-15 00:00

Summary

perl-32bit-5.34.0-1.1 on GA media

Notes

Title of the patch

perl-32bit-5.34.0-1.1 on GA media

Description of the patch

These are all security issues fixed in the perl-32bit-5.34.0-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames

openSUSE-Tumbleweed-2024-11158

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "perl-32bit-5.34.0-1.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the perl-32bit-5.34.0-1.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-11158",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11158-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2005-3962 page",
        "url": "https://www.suse.com/security/cve/CVE-2005-3962/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2007-5116 page",
        "url": "https://www.suse.com/security/cve/CVE-2007-5116/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-12814 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-12814/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-12837 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-12837/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-12883 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-12883/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-18311 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-18311/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-18312 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-18312/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-10543 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-10543/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-10878 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-10878/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-12723 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-12723/"
      }
    ],
    "title": "perl-32bit-5.34.0-1.1 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:11158-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "perl-5.34.0-1.1.aarch64",
                "product": {
                  "name": "perl-5.34.0-1.1.aarch64",
                  "product_id": "perl-5.34.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "perl-32bit-5.34.0-1.1.aarch64",
                "product": {
                  "name": "perl-32bit-5.34.0-1.1.aarch64",
                  "product_id": "perl-32bit-5.34.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "perl-base-5.34.0-1.1.aarch64",
                "product": {
                  "name": "perl-base-5.34.0-1.1.aarch64",
                  "product_id": "perl-base-5.34.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "perl-base-32bit-5.34.0-1.1.aarch64",
                "product": {
                  "name": "perl-base-32bit-5.34.0-1.1.aarch64",
                  "product_id": "perl-base-32bit-5.34.0-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "perl-doc-5.34.0-1.1.aarch64",
                "product": {
                  "name": "perl-doc-5.34.0-1.1.aarch64",
                  "product_id": "perl-doc-5.34.0-1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "perl-5.34.0-1.1.ppc64le",
                "product": {
                  "name": "perl-5.34.0-1.1.ppc64le",
                  "product_id": "perl-5.34.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "perl-32bit-5.34.0-1.1.ppc64le",
                "product": {
                  "name": "perl-32bit-5.34.0-1.1.ppc64le",
                  "product_id": "perl-32bit-5.34.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "perl-base-5.34.0-1.1.ppc64le",
                "product": {
                  "name": "perl-base-5.34.0-1.1.ppc64le",
                  "product_id": "perl-base-5.34.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "perl-base-32bit-5.34.0-1.1.ppc64le",
                "product": {
                  "name": "perl-base-32bit-5.34.0-1.1.ppc64le",
                  "product_id": "perl-base-32bit-5.34.0-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "perl-doc-5.34.0-1.1.ppc64le",
                "product": {
                  "name": "perl-doc-5.34.0-1.1.ppc64le",
                  "product_id": "perl-doc-5.34.0-1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "perl-5.34.0-1.1.s390x",
                "product": {
                  "name": "perl-5.34.0-1.1.s390x",
                  "product_id": "perl-5.34.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "perl-32bit-5.34.0-1.1.s390x",
                "product": {
                  "name": "perl-32bit-5.34.0-1.1.s390x",
                  "product_id": "perl-32bit-5.34.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "perl-base-5.34.0-1.1.s390x",
                "product": {
                  "name": "perl-base-5.34.0-1.1.s390x",
                  "product_id": "perl-base-5.34.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "perl-base-32bit-5.34.0-1.1.s390x",
                "product": {
                  "name": "perl-base-32bit-5.34.0-1.1.s390x",
                  "product_id": "perl-base-32bit-5.34.0-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "perl-doc-5.34.0-1.1.s390x",
                "product": {
                  "name": "perl-doc-5.34.0-1.1.s390x",
                  "product_id": "perl-doc-5.34.0-1.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "perl-5.34.0-1.1.x86_64",
                "product": {
                  "name": "perl-5.34.0-1.1.x86_64",
                  "product_id": "perl-5.34.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "perl-32bit-5.34.0-1.1.x86_64",
                "product": {
                  "name": "perl-32bit-5.34.0-1.1.x86_64",
                  "product_id": "perl-32bit-5.34.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "perl-base-5.34.0-1.1.x86_64",
                "product": {
                  "name": "perl-base-5.34.0-1.1.x86_64",
                  "product_id": "perl-base-5.34.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "perl-base-32bit-5.34.0-1.1.x86_64",
                "product": {
                  "name": "perl-base-32bit-5.34.0-1.1.x86_64",
                  "product_id": "perl-base-32bit-5.34.0-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "perl-doc-5.34.0-1.1.x86_64",
                "product": {
                  "name": "perl-doc-5.34.0-1.1.x86_64",
                  "product_id": "perl-doc-5.34.0-1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-5.34.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64"
        },
        "product_reference": "perl-5.34.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-5.34.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le"
        },
        "product_reference": "perl-5.34.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-5.34.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x"
        },
        "product_reference": "perl-5.34.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-5.34.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64"
        },
        "product_reference": "perl-5.34.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-32bit-5.34.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64"
        },
        "product_reference": "perl-32bit-5.34.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-32bit-5.34.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le"
        },
        "product_reference": "perl-32bit-5.34.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-32bit-5.34.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x"
        },
        "product_reference": "perl-32bit-5.34.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-32bit-5.34.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64"
        },
        "product_reference": "perl-32bit-5.34.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-base-5.34.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64"
        },
        "product_reference": "perl-base-5.34.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-base-5.34.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le"
        },
        "product_reference": "perl-base-5.34.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-base-5.34.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x"
        },
        "product_reference": "perl-base-5.34.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-base-5.34.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64"
        },
        "product_reference": "perl-base-5.34.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-base-32bit-5.34.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64"
        },
        "product_reference": "perl-base-32bit-5.34.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-base-32bit-5.34.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le"
        },
        "product_reference": "perl-base-32bit-5.34.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-base-32bit-5.34.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x"
        },
        "product_reference": "perl-base-32bit-5.34.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-base-32bit-5.34.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64"
        },
        "product_reference": "perl-base-32bit-5.34.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-doc-5.34.0-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64"
        },
        "product_reference": "perl-doc-5.34.0-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-doc-5.34.0-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le"
        },
        "product_reference": "perl-doc-5.34.0-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-doc-5.34.0-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x"
        },
        "product_reference": "perl-doc-5.34.0-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-doc-5.34.0-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
        },
        "product_reference": "perl-doc-5.34.0-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2005-3962",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2005-3962"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Integer overflow in the format string functionality (Perl_sv_vcatpvfn) in Perl 5.9.2 and 5.8.6 Perl allows attackers to overwrite arbitrary memory and possibly execute arbitrary code via format string specifiers with large values, which causes an integer wrap and leads to a buffer overflow, as demonstrated using format string vulnerabilities in Perl applications.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2005-3962",
          "url": "https://www.suse.com/security/cve/CVE-2005-3962"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 136360 for CVE-2005-3962",
          "url": "https://bugzilla.suse.com/136360"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2005-3962"
    },
    {
      "cve": "CVE-2007-5116",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2007-5116"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp.c) in Perl 5.8 allows context-dependent attackers to execute arbitrary code by switching from byte to Unicode (UTF) characters in a regular expression.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2007-5116",
          "url": "https://www.suse.com/security/cve/CVE-2007-5116"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 332199 for CVE-2007-5116",
          "url": "https://bugzilla.suse.com/332199"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 372331 for CVE-2007-5116",
          "url": "https://bugzilla.suse.com/372331"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 915514 for CVE-2007-5116",
          "url": "https://bugzilla.suse.com/915514"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2007-5116"
    },
    {
      "cve": "CVE-2017-12814",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-12814"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Stack-based buffer overflow in the CPerlHost::Add method in win32/perlhost.h in Perl before 5.24.3-RC1 and 5.26.x before 5.26.1-RC1 on Windows allows attackers to execute arbitrary code via a long environment variable.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-12814",
          "url": "https://www.suse.com/security/cve/CVE-2017-12814"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1057727 for CVE-2017-12814",
          "url": "https://bugzilla.suse.com/1057727"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2017-12814"
    },
    {
      "cve": "CVE-2017-12837",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-12837"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Heap-based buffer overflow in the S_regatom function in regcomp.c in Perl 5 before 5.24.3-RC1 and 5.26.x before 5.26.1-RC1 allows remote attackers to cause a denial of service (out-of-bounds write) via a regular expression with a \u0027\\N{}\u0027 escape and the case-insensitive modifier.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-12837",
          "url": "https://www.suse.com/security/cve/CVE-2017-12837"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1057724 for CVE-2017-12837",
          "url": "https://bugzilla.suse.com/1057724"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2017-12837"
    },
    {
      "cve": "CVE-2017-12883",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-12883"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Buffer overflow in the S_grok_bslash_N function in regcomp.c in Perl 5 before 5.24.3-RC1 and 5.26.x before 5.26.1-RC1 allows remote attackers to disclose sensitive information or cause a denial of service (application crash) via a crafted regular expression with an invalid \u0027\\N{U+...}\u0027 escape.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-12883",
          "url": "https://www.suse.com/security/cve/CVE-2017-12883"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1057721 for CVE-2017-12883",
          "url": "https://bugzilla.suse.com/1057721"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-12883"
    },
    {
      "cve": "CVE-2018-18311",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-18311"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid write operations.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-18311",
          "url": "https://www.suse.com/security/cve/CVE-2018-18311"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1114674 for CVE-2018-18311",
          "url": "https://bugzilla.suse.com/1114674"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132018 for CVE-2018-18311",
          "url": "https://bugzilla.suse.com/1132018"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-18311"
    },
    {
      "cve": "CVE-2018-18312",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-18312"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Perl before 5.26.3 and 5.28.0 before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid write operations.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-18312",
          "url": "https://www.suse.com/security/cve/CVE-2018-18312"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1114675 for CVE-2018-18312",
          "url": "https://bugzilla.suse.com/1114675"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-18312"
    },
    {
      "cve": "CVE-2020-10543",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-10543"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-10543",
          "url": "https://www.suse.com/security/cve/CVE-2020-10543"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1171863 for CVE-2020-10543",
          "url": "https://bugzilla.suse.com/1171863"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1225627 for CVE-2020-10543",
          "url": "https://bugzilla.suse.com/1225627"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-10543"
    },
    {
      "cve": "CVE-2020-10878",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-10878"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Perl before 5.30.3 has an integer overflow related to mishandling of a \"PL_regkind[OP(n)] == NOTHING\" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-10878",
          "url": "https://www.suse.com/security/cve/CVE-2020-10878"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1171864 for CVE-2020-10878",
          "url": "https://bugzilla.suse.com/1171864"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1225627 for CVE-2020-10878",
          "url": "https://bugzilla.suse.com/1225627"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-10878"
    },
    {
      "cve": "CVE-2020-12723",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-12723"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive S_study_chunk calls.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
          "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-12723",
          "url": "https://www.suse.com/security/cve/CVE-2020-12723"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1171866 for CVE-2020-12723",
          "url": "https://bugzilla.suse.com/1171866"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1225627 for CVE-2020-12723",
          "url": "https://bugzilla.suse.com/1225627"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-32bit-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-base-5.34.0-1.1.x86_64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.aarch64",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.s390x",
            "openSUSE Tumbleweed:perl-doc-5.34.0-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-12723"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2005-3962 (GCVE-0-2005-3962)

Vulnerability from cvelistv5

rhsa-2005:881

Vulnerability from csaf_redhat

rhsa-2005:880

Vulnerability from csaf_redhat

gsd-2005-3962

Vulnerability from gsd

ghsa-x9vv-cmfc-4qwh

Vulnerability from github

fkie_cve-2005-3962

Vulnerability from fkie_nvd

opensuse-su-2024:11158-1

Vulnerability from csaf_opensuse

Tags

Sightings

Nomenclature