Denial of service vulnerability in perl via an array-ReferenceID: oval:org.secpod.oval:def:21833 | Date: (C)2014-12-03 (M)2022-09-22 |
Class: VULNERABILITY | Family: unix |
The host is installed with perl-Data-Dumper before 2.154 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle an array-Reference with many nested Array-References, which triggers a large number of recursive calls to the DD_dump function. Successful exploitation allows context-dependent attackers to cause a denial of service (stack consumption and crash).
Platform: |
Red Hat Enterprise Linux 7 |
Red Hat Enterprise Linux 6 |