[Git][security-tracker-team/security-tracker][master] Add CVE-2024-56406/perl
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Apr 13 14:31:09 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8824757f by Salvatore Bonaccorso at 2025-04-13T15:30:42+02:00
Add CVE-2024-56406/perl
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,9 @@
+CVE-2024-56406 [heap buffer overflow when transliterating non-ASCII bytes]
+ - perl <unfixed>
+ [bullseye] - perl <not-affected> (Vulnerable code introduced later)
+ NOTE: https://lists.security.metacpan.org/cve-announce/msg/28708725/
+ NOTE: Introduced by: https://github.com/Perl/perl5/commit/a311ee08b6781f83a7785f578a26bbc21a7ae457 (v5.33.1)
+ NOTE: Fixed by: https://github.com/Perl/perl5/commit/87f42aa0e0096e9a346c9672aa3a0bd3bef8c1dd
CVE-2025-3532 (A vulnerability classified as problematic was found in YouDianCMS 9.5. ...)
NOT-FOR-US: YouDianCMS
CVE-2025-3531 (A vulnerability classified as problematic has been found in YouDianCMS ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8824757fa3cbdadecf776a254cbc2e6294b1a79f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8824757fa3cbdadecf776a254cbc2e6294b1a79f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250413/62539381/attachment.htm>
More information about the debian-security-tracker-commits
mailing list