Security update for perl
This update for perl fixes the following issues:
Secuirty issues fixed:
- CVE-2018-18311: Fixed integer overflow with oversize environment (bsc#1114674).
- CVE-2018-18312: Fixed heap-buffer-overflow write / reg_node overrun (bsc#1114675).
- CVE-2018-18313: Fixed heap-buffer-overflow read if regex contains \0 chars (bsc#1114681).
- CVE-2018-18314: Fixed heap-buffer-overflow in regex (bsc#1114686).
This update was imported from the SUSE:SLE-15:Update update project.
-
Submitted by
Michael Schröder (mlschroe)
Fixed bugs
bnc#1114675
VUL-0: EMBARGOED: CVE-2018-18312: perl: Heap-buffer-overflow write / reg_node overrun
bnc#1114674
VUL-1: EMBARGOED: CVE-2018-18311: perl: environment overflow
bnc#1114686
VUL-1: EMBARGOED: CVE-2018-18314: perl: Heap-based buffer overflow in regex
bnc#1114681
VUL-1: EMBARGOED: CVE-2018-18313: perl: Heap-buffer-overflow read
