Ubuntu Security Notice 3478-2 - USN-3478-1 fixed two vulnerabilities in Perl. This update provides the corresponding update for Ubuntu 12.04 ESM. Jakub Wilk discovered that Perl incorrectly handled certain regular expressions. An attacker could use this issue to cause Perl to crash, resulting in a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.
56131795db34853861d0fab4f6e44a939d8737a03a90759a8c10c92c4cfa6938
===========================================================================
Ubuntu Security Notice USN-3478-2
November 13, 2017
perl vulnerability
===========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 12.04 ESM
Summary:
Perl could be made to crash if it received specially crafted
input.
Software Description:
- perl: Practical Extraction and Report Language
Details:
USN-3478-1 fixed two vulnerabilities in Perl. This update
provides the corresponding update for Ubuntu 12.04 ESM.
Original advisory details:
Jakub Wilk discovered that Perl incorrectly handled certain regular
expressions. An attacker could use this issue to cause Perl to crash,
resulting in a denial of service, or possibly execute arbitrary code.
(CVE-2017-12883)
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 12.04 ESM:
perl=C2=A05.14.2-6ubuntu2.6
In general, a standard system update will make all the necessary
changes.
References:
https://www.ubuntu.com/usn/usn-3478-2
https://www.ubuntu.com/usn/usn-3478-1
CVE-2017-12883