MDVSA-2009:207 -- Mandriva perl-Compress-Raw-Bzip2ID: oval:org.secpod.oval:def:300780 | Date: (C)2012-01-07 (M)2023-02-20 |
Class: PATCH | Family: unix |
A vulnerability has been found and corrected in perl-Compress-Raw-Bzip: Off-by-one error in the bzinflate function in Bzip2.xs in the Compress-Raw-Bzip2 module before 2.018 for Perl allows context-dependent attackers to cause a denial of service via a crafted bzip2 compressed stream that triggers a buffer overflow, a related issue to CVE-2009-1391 . This update provides a solution to this vulnerability.
Platform: |
Mandriva Linux 2009.1 |
Product: |
perl-Compress-Raw-Bzip2 |