Packages
Get Gentoo!
gentoo.org sites
gentoo.org
Wiki
Bugs
Forums
Packages
Planet
Archives
Sources
Infra Status
Home
Packages
Maintainers
USE flags
Architectures
About
Gentoo Project
Perl Project
Packages
1837
Stabilization
4
Outdated
160
Pull requests
5
Bugs
256
Security
17
Changelog
Security Bug Reports
<dev-perl/Data-UUID-1.227.0: Symlink attacks (CVE-2013-4184)
479370 - Assigned to Gentoo Security
dev-perl/DBI: insufficient parameter validation in DBD::File (CVE-2014-10402)
746437 - Assigned to Gentoo Security
<dev-perl/Net-CIDR-Lite-0.220.0: octal type confusion with leading zeros in IP octets
779172 - Assigned to Gentoo Security
<media-libs/exiftool-12.26: Vulnerability in lang option
791397 - Assigned to Gentoo Security
dev-perl/App-cpanminus: signature verification bypass
829116 - Assigned to Gentoo Security
<dev-perl/CPAN-Checksums-2.140.0: lacks definition of signed data (CVE-2020-16155)
829118 - Assigned to Gentoo Security
<media-libs/exiftool-12.42: lib/Image/ExifTool.pm mishandles a $file =~ /\|$/ check
832033 - Assigned to Gentoo Security
<dev-lang/perl-5.36.1-r2: HTTP::Tiny certificate verification off by default
905296 - Assigned to Gentoo Security
<dev-perl/HTTP-Daemon-6.160.0: Incorrect handling of multiple Content-Length headers
908905 - Assigned to Gentoo Security
dev-perl/Mail-Box-POP3: defaults to no SSL verification
913199 - Assigned to Gentoo Security
<dev-lang/perl-5.38.2 : Write past buffer end via illegal user-defined Unicode property
918612 - Assigned to Gentoo Security
<dev-perl/Spreadsheet-ParseExcel-0.660.0: arbitrary code execution
920954 - Assigned to Gentoo Security
<dev-perl/Crypt-SMIME-0.300.0: double free in x509 parser
930378 - Assigned to Gentoo Security
<dev-perl/Email-MIME-1.954.0: Denial of service via excessive memory consumption
931106 - Assigned to Gentoo Security
<dev-perl/Net-DNS-1.450.0: DoS vulnerability in TCP handling
931107 - Assigned to Gentoo Security
dev-perl/Crypt-OpenSSL-RSA: Marvin Attack vulnerability (side-channel)
931108 - Assigned to Gentoo Security
Contact Information
Please file new vulnerability reports on
Gentoo Bugzilla
and assign them to the Gentoo Security product and Vulnerabilities component.