CVE-2007-5116
published 2007-11-07CVE-2007-5116: Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp.c) in Perl 5.8 allows context-dependent attackers to execute…
PriorityP339high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
4.83%
90.9th percentile
Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp.c) in Perl 5.8 allows context-dependent attackers to execute arbitrary code by switching from byte to Unicode (UTF) characters in a regular expression.
Affected
19 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | perl | < perl 5.8.8-12 (bookworm) | perl 5.8.8-12 (bookworm) |
| larry_wall | perl | — | — |
| larry_wall | perl | — | — |
| larry_wall | perl | — | — |
| larry_wall | perl | — | — |
| larry_wall | perl | — | — |
| larry_wall | perl | — | — |
| larry_wall | perl | — | — |
| larry_wall | perl | — | — |
| larry_wall | perl | — | — |
| larry_wall | perl | — | — |
| larry_wall | perl | — | — |
| mandrakesoft | mandrake_multi_network_firewall | — | — |
| openpkg | openpkg | — | — |
| perl | perl | >= 0 < 5.8.8-12 | 5.8.8-12 |
| perl | perl | >= 0 < 5.8.8-12 | 5.8.8-12 |
| perl | perl | >= 0 < 5.8.8-12 | 5.8.8-12 |
| perl | perl | >= 0 < 5.8.8-12 | 5.8.8-12 |
| redhat | enterprise_linux | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5MEDIUM
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-3wp4-6pwm-vcxj: Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp
ghsa_unreviewed·2022-05-03
CVE-2007-5116 [HIGH] CWE-119 GHSA-3wp4-6pwm-vcxj: Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp
Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp.c) in Perl 5.8 allows context-dependent attackers to execute arbitrary code by switching from byte to Unicode (UTF) characters in a regular expression.
OSV
CVE-2007-5116: Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp
osv·2007-11-07·CVSS 7.5
CVE-2007-5116 [HIGH] CVE-2007-5116: Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp
Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp.c) in Perl 5.8 allows context-dependent attackers to execute arbitrary code by switching from byte to Unicode (UTF) characters in a regular expression.
VMware
Updated service console patches.
vendor_vmware·2008-01-07·CVSS 1.2
CVE-2007-3108 [LOW] Updated service console patches.
VMSA-2008-0001: Updated service console patches.
Updated service console patches. VMware Security Advisory VMware Security Advisory Advisory ID: VMware Security Advisory Synopsis: Updated service console patches. VMware Security Advisory Issue date: VMware Security Advisory Updated on:
CVEs: CVE-2007-3108, CVE-2007-4572, CVE-2007-5116, CVE-2007-5135, CVE-2007-5191, CVE-2007-5360, CVE-2007-5398
Ubuntu
Perl vulnerability
vendor_ubuntu·2007-12-04
CVE-2007-5116 Perl vulnerability
Title: Perl vulnerability
Summary: Perl vulnerability
It was discovered that Perl's regular expression library did not correctly
handle certain UTF sequences. If a user or automated system were tricked
into running a specially crafted regular expression, a remote attacker
could crash the application or possibly execute arbitrary code with
user privileges.
Instructions: In general, a standard system upgrade is sufficient to effect the
necessary changes.
Red Hat
perl regular expression UTF parsing errors
vendor_redhat·2007-11-05·CVSS 7.5
CVE-2007-5116 [HIGH] perl regular expression UTF parsing errors
perl regular expression UTF parsing errors
Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp.c) in Perl 5.8 allows context-dependent attackers to execute arbitrary code by switching from byte to Unicode (UTF) characters in a regular expression.
Debian
CVE-2007-5116: perl - Buffer overflow in the polymorphic opcode support in the Regular Expression Engi...
vendor_debian·2007·CVSS 7.5
CVE-2007-5116 [HIGH] CVE-2007-5116: perl - Buffer overflow in the polymorphic opcode support in the Regular Expression Engi...
Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp.c) in Perl 5.8 allows context-dependent attackers to execute arbitrary code by switching from byte to Unicode (UTF) characters in a regular expression.
Scope: local
bookworm: resolved (fixed in 5.8.8-12)
bullseye: resolved (fixed in 5.8.8-12)
forky: resolved (fixed in 5.8.8-12)
sid: resolved (fixed in 5.8.8-12)
trixie: resolved (fixed in 5.8.8-12)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2007-5116 perl regular expression UTF parsing errors [f7]
bugzilla·2007-11-12·CVSS 7.5
CVE-2007-5116 [HIGH] CVE-2007-5116 perl regular expression UTF parsing errors [f7]
CVE-2007-5116 perl regular expression UTF parsing errors [f7]
This is an automatically created tracking bug!
It was created to ensure that one or more security vulnerabilities are fixed in all affected releases. You should not refer to it anywhere except in the update system as it is a private "Fedora Project Contributors" bug. The update system should close this bug it once the update is pushed.
For comments that are specific to a vulnerability please use bugs filed against "Security Response" product referenced in "Blocks" field.
bug #323571: CVE-2007-5116 perl regular expression UTF parsing errors
When creating an update for the version this this bug is reported against please include the bug IDs of respective bugs filed against "Security Response" product as well as of this bug. P
Bugzilla
CVE-2007-5116 perl regular expression UTF parsing errors [f8]
bugzilla·2007-11-12·CVSS 7.5
CVE-2007-5116 [HIGH] CVE-2007-5116 perl regular expression UTF parsing errors [f8]
CVE-2007-5116 perl regular expression UTF parsing errors [f8]
This is an automatically created tracking bug!
It was created to ensure that one or more security vulnerabilities are fixed in all affected releases. You should not refer to it anywhere except in the update system as it is a private "Fedora Project Contributors" bug. The update system should close this bug it once the update is pushed.
For comments that are specific to a vulnerability please use bugs filed against "Security Response" product referenced in "Blocks" field.
bug #323571: CVE-2007-5116 perl regular expression UTF parsing errors
When creating an update for the version this this bug is reported against please include the bug IDs of respective bugs filed against "Security Response" product as well as of this bug. P
Bugzilla
CVE-2007-5116 perl regular expression UTF parsing errors
bugzilla·2007-10-08·CVSS 7.5
CVE-2007-5116 [HIGH] CVE-2007-5116 perl regular expression UTF parsing errors
CVE-2007-5116 perl regular expression UTF parsing errors
Tavis Ormandy and Will Drewry have discovered a flaw in the way perl calculates
the space needed to process a regular expression. It is possible to cause the
two passes to mismatch. To quote their mail:
The compile phase uses multiple passes (similar to older pcre releases),
once to determine space requirements and another to actually compile the
expression, however it's very simple to cause the two passes to mismatch.
From the perl documentation:
> The regular expression compiler produces polymorphic opcodes.That is,
> the pattern adapts to the data and automatically switches to the Unicode
> character scheme when presented with Unicode data--or instead uses a
> traditional byte scheme when presented with byte data.
This unfortu
ftp://aix.software.ibm.com/aix/efixes/security/READMEhttp://docs.info.apple.com/article.html?artnum=307179http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.htmlhttp://lists.vmware.com/pipermail/security-announce/2008/000002.htmlhttp://marc.info/?l=bugtraq&m=120352263023774&w=2http://secunia.com/advisories/27479http://secunia.com/advisories/27515http://secunia.com/advisories/27531http://secunia.com/advisories/27546http://secunia.com/advisories/27548http://secunia.com/advisories/27570http://secunia.com/advisories/27613http://secunia.com/advisories/27756http://secunia.com/advisories/27936http://secunia.com/advisories/28167http://secunia.com/advisories/28368http://secunia.com/advisories/28387http://secunia.com/advisories/28993http://secunia.com/advisories/29074http://secunia.com/advisories/31208http://securitytracker.com/id?1018899http://sunsolve.sun.com/search/document.do?assetkey=1-26-31524-1http://sunsolve.sun.com/search/document.do?assetkey=1-66-231524-1http://sunsolve.sun.com/search/document.do?assetkey=1-77-1018985.1-1http://support.avaya.com/elmodocs2/security/ASA-2008-014.htmhttp://www-1.ibm.com/support/docview.wss?uid=isg1IZ10220http://www-1.ibm.com/support/docview.wss?uid=isg1IZ10244http://www.debian.org/security/2007/dsa-1400http://www.gentoo.org/security/en/glsa/glsa-200711-28.xmlhttp://www.ipcop.org/index.php?name=News&file=article&sid=41http://www.mandriva.com/security/advisories?name=MDKSA-2007:207http://www.novell.com/linux/security/advisories/2007_24_sr.htmlhttp://www.openpkg.com/security/advisories/OpenPKG-SA-2007.023.htmlhttp://www.redhat.com/support/errata/RHSA-2007-0966.htmlhttp://www.redhat.com/support/errata/RHSA-2007-1011.htmlhttp://www.securityfocus.com/archive/1/483563/100/0/threadedhttp://www.securityfocus.com/archive/1/483584/100/0/threadedhttp://www.securityfocus.com/archive/1/485936/100/0/threadedhttp://www.securityfocus.com/archive/1/486859/100/0/threadedhttp://www.securityfocus.com/bid/26350http://www.ubuntu.com/usn/usn-552-1http://www.us-cert.gov/cas/techalerts/TA07-352A.htmlhttp://www.vmware.com/security/advisories/VMSA-2008-0001.htmlhttp://www.vupen.com/english/advisories/2007/3724http://www.vupen.com/english/advisories/2007/4238http://www.vupen.com/english/advisories/2007/4255http://www.vupen.com/english/advisories/2008/0064http://www.vupen.com/english/advisories/2008/0641https://bugzilla.redhat.com/show_bug.cgi?id=323571https://bugzilla.redhat.com/show_bug.cgi?id=378131https://exchange.xforce.ibmcloud.com/vulnerabilities/38270https://issues.rpath.com/browse/RPL-1813https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10669ftp://aix.software.ibm.com/aix/efixes/security/READMEhttp://docs.info.apple.com/article.html?artnum=307179http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.htmlhttp://lists.vmware.com/pipermail/security-announce/2008/000002.htmlhttp://marc.info/?l=bugtraq&m=120352263023774&w=2http://secunia.com/advisories/27479http://secunia.com/advisories/27515http://secunia.com/advisories/27531http://secunia.com/advisories/27546http://secunia.com/advisories/27548http://secunia.com/advisories/27570http://secunia.com/advisories/27613http://secunia.com/advisories/27756http://secunia.com/advisories/27936http://secunia.com/advisories/28167http://secunia.com/advisories/28368http://secunia.com/advisories/28387http://secunia.com/advisories/28993http://secunia.com/advisories/29074http://secunia.com/advisories/31208http://securitytracker.com/id?1018899http://sunsolve.sun.com/search/document.do?assetkey=1-26-31524-1http://sunsolve.sun.com/search/document.do?assetkey=1-66-231524-1http://sunsolve.sun.com/search/document.do?assetkey=1-77-1018985.1-1http://support.avaya.com/elmodocs2/security/ASA-2008-014.htmhttp://www-1.ibm.com/support/docview.wss?uid=isg1IZ10220http://www-1.ibm.com/support/docview.wss?uid=isg1IZ10244http://www.debian.org/security/2007/dsa-1400http://www.gentoo.org/security/en/glsa/glsa-200711-28.xmlhttp://www.ipcop.org/index.php?name=News&file=article&sid=41http://www.mandriva.com/security/advisories?name=MDKSA-2007:207http://www.novell.com/linux/security/advisories/2007_24_sr.htmlhttp://www.openpkg.com/security/advisories/OpenPKG-SA-2007.023.htmlhttp://www.redhat.com/support/errata/RHSA-2007-0966.htmlhttp://www.redhat.com/support/errata/RHSA-2007-1011.htmlhttp://www.securityfocus.com/archive/1/483563/100/0/threadedhttp://www.securityfocus.com/archive/1/483584/100/0/threadedhttp://www.securityfocus.com/archive/1/485936/100/0/threadedhttp://www.securityfocus.com/archive/1/486859/100/0/threadedhttp://www.securityfocus.com/bid/26350http://www.ubuntu.com/usn/usn-552-1http://www.us-cert.gov/cas/techalerts/TA07-352A.htmlhttp://www.vmware.com/security/advisories/VMSA-2008-0001.htmlhttp://www.vupen.com/english/advisories/2007/3724http://www.vupen.com/english/advisories/2007/4238http://www.vupen.com/english/advisories/2007/4255http://www.vupen.com/english/advisories/2008/0064
+ 6 more references
2007-11-07
Published