{ "CVE_data_meta":{ "ASSIGNER":"cve@mitre.org", "ID":"CVE-2018-18311", "STATE":"PUBLIC" }, "affects":{ "vendor":{ "vendor_data":[ { "product":{ "product_data":[ { "product_name":"n/a", "version":{ "version_data":[ { "version_value":"n/a" } ] } } ] }, "vendor_name":"n/a" } ] } }, "data_format":"MITRE", "data_type":"CVE", "data_version":"4.0", "description":{ "description_data":[ { "lang":"eng", "value":"Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid write operations." } ] }, "problemtype":{ "problemtype_data":[ { "description":[ { "lang":"eng", "value":"n/a" } ] } ] }, "references":{ "reference_data":[ { "name":"https://bugzilla.redhat.com/show_bug.cgi?id=1646730", "refsource":"CONFIRM", "url":"https://bugzilla.redhat.com/show_bug.cgi?id=1646730" }, { "name":"https://security.netapp.com/advisory/ntap-20190221-0003/", "refsource":"CONFIRM", "url":"https://security.netapp.com/advisory/ntap-20190221-0003/" }, { "name":"[debian-lts-announce] 20181130 [SECURITY] [DLA 1601-1] perl security update", "refsource":"MLIST", "url":"https://lists.debian.org/debian-lts-announce/2018/11/msg00039.html" }, { "name":"https://metacpan.org/changes/release/SHAY/perl-5.26.3", "refsource":"CONFIRM", "url":"https://metacpan.org/changes/release/SHAY/perl-5.26.3" }, { "name":"DSA-4347", "refsource":"DEBIAN", "url":"https://www.debian.org/security/2018/dsa-4347" }, { "name":"106145", "refsource":"BID", "url":"http://www.securityfocus.com/bid/106145" }, { "name":"1042181", "refsource":"SECTRACK", "url":"http://www.securitytracker.com/id/1042181" }, { "name":"RHSA-2019:0010", "refsource":"REDHAT", "url":"https://access.redhat.com/errata/RHSA-2019:0010" }, { "name":"https://metacpan.org/changes/release/SHAY/perl-5.28.1", "refsource":"CONFIRM", "url":"https://metacpan.org/changes/release/SHAY/perl-5.28.1" }, { "name":"USN-3834-2", "refsource":"UBUNTU", "url":"https://usn.ubuntu.com/3834-2/" }, { "name":"FEDORA-2018-9dbe983805", "refsource":"FEDORA", "url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RWQGEB543QN7SSBRKYJM6PSOC3RLYGSM/" }, { "name":"RHSA-2019:0001", "refsource":"REDHAT", "url":"https://access.redhat.com/errata/RHSA-2019:0001" }, { "name":"https://rt.perl.org/Ticket/Display.html?id=133204", "refsource":"CONFIRM", "url":"https://rt.perl.org/Ticket/Display.html?id=133204" }, { "name":"https://github.com/Perl/perl5/commit/34716e2a6ee2af96078d62b065b7785c001194be", "refsource":"CONFIRM", "url":"https://github.com/Perl/perl5/commit/34716e2a6ee2af96078d62b065b7785c001194be" }, { "name":"RHSA-2019:0109", "refsource":"REDHAT", "url":"https://access.redhat.com/errata/RHSA-2019:0109" }, { "name":"USN-3834-1", "refsource":"UBUNTU", "url":"https://usn.ubuntu.com/3834-1/" }, { "refsource":"CONFIRM", "name":"https://support.apple.com/kb/HT209600", "url":"https://support.apple.com/kb/HT209600" }, { "refsource":"BUGTRAQ", "name":"20190326 APPLE-SA-2019-3-25-2 macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra", "url":"https://seclists.org/bugtraq/2019/Mar/42" }, { "refsource":"FULLDISC", "name":"20190326 APPLE-SA-2019-3-25-2 macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra", "url":"http://seclists.org/fulldisclosure/2019/Mar/49" }, { "refsource":"CONFIRM", "name":"https://kc.mcafee.com/corporate/index?page=content&id=SB10278", "url":"https://kc.mcafee.com/corporate/index?page=content&id=SB10278" }, { "refsource":"REDHAT", "name":"RHBA-2019:0327", "url":"https://access.redhat.com/errata/RHBA-2019:0327" }, { "refsource":"REDHAT", "name":"RHSA-2019:1790", "url":"https://access.redhat.com/errata/RHSA-2019:1790" }, { "url":"https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html", "refsource":"MISC", "name":"https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html" }, { "refsource":"REDHAT", "name":"RHSA-2019:1942", "url":"https://access.redhat.com/errata/RHSA-2019:1942" }, { "refsource":"REDHAT", "name":"RHSA-2019:2400", "url":"https://access.redhat.com/errata/RHSA-2019:2400" }, { "refsource":"GENTOO", "name":"GLSA-201909-01", "url":"https://security.gentoo.org/glsa/201909-01" }, { "url":"https://www.oracle.com/security-alerts/cpuapr2020.html" } ] } }