DSA-2641-2 libapache2-mod-perl2 -- rehashing flawID: oval:org.secpod.oval:def:600997 | Date: (C)2013-03-22 (M)2023-12-07 |
Class: PATCH | Family: unix |
The security fix applied to the perl package due to CVE-2013-1667 introduced a test failure in libapache2-mod-perl2 source package specific to the rehash mechanism in Perl. See Debian Bug #702821 for details. This update fixes that problem. For reference, the original advisory text for perl follows. Yves Orton discovered a flaw in the rehashing code of Perl. This flaw could be exploited to carry out a denial of service attack against code that uses arbitrary user input as hash keys. Specifically an attacker could create a set of keys of a hash causing a denial of service via memory exhaustion.
Product: |
libapache2-mod-perl2 |