Launchpad CVE tracker

CVE 2011-3597

Eval injection vulnerability in the Digest module before 1.17 for Perl allows context-dependent attackers to execute arbitrary commands via the new constructor.

Related bugs and status

CVE-2011-3597 (Candidate) is related to these bugs:

Bug #1069034: [CVE-2012-5195] heap buffer overrun with the 'x' string repeat operator

		In	Importance	Status
1069034	[CVE-2012-5195] heap buffer overrun with the 'x' string repeat operator	perl (Ubuntu)	Medium	Fix Released
1069034	[CVE-2012-5195] heap buffer overrun with the 'x' string repeat operator	perl (Ubuntu Hardy)	Medium	Fix Released
1069034	[CVE-2012-5195] heap buffer overrun with the 'x' string repeat operator	perl (Ubuntu Lucid)	Medium	Fix Released
1069034	[CVE-2012-5195] heap buffer overrun with the 'x' string repeat operator	perl (Ubuntu Natty)	Medium	Won't Fix
1069034	[CVE-2012-5195] heap buffer overrun with the 'x' string repeat operator	perl (Ubuntu Oneiric)	Medium	Fix Released
1069034	[CVE-2012-5195] heap buffer overrun with the 'x' string repeat operator	perl (Ubuntu Precise)	Medium	Fix Released
1069034	[CVE-2012-5195] heap buffer overrun with the 'x' string repeat operator	perl (Ubuntu Quantal)	Medium	Fix Released
1069034	[CVE-2012-5195] heap buffer overrun with the 'x' string repeat operator	perl (Ubuntu Raring)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2011-3597

References