Red Hat Customer Portal

Skip to main content

CVE-2007-5116

Impact:
Important
Public Date:
2007-11-05
Bugzilla:
323571: CVE-2007-5116 perl regular expression UTF parsing errors

The MITRE CVE dictionary describes this issue as:

Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp.c) in Perl 5.8 allows context-dependent attackers to execute arbitrary code by switching from byte to Unicode (UTF) characters in a regular expression.

Find out more about CVE-2007-5116 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 4 (perl) RHSA-2007:0966 2007-11-05
Red Hat Certificate System 7.3 for 4AS RHSA-2010:0602 2010-08-04
Red Hat Enterprise Linux 5 (perl) RHSA-2007:0966 2007-11-05
Red Hat Application Stack v1 for Enterprise Linux AS (v.4) (perl) RHSA-2007:1011 2007-11-05
Red Hat Enterprise Linux 3 (perl) RHSA-2007:0966 2007-11-05

Acknowledgements

Red Hat would like to thank Tavis Ormandy and Will Drewry for properly disclosing this issue.

Last Modified