Denial of service vulnerability in perl via an array-Reference
|ID: oval:org.secpod.oval:def:21833||Date: (C)2014-12-03 (M)2018-05-12|
|Class: VULNERABILITY||Family: unix|
The host is installed with perl-Data-Dumper before 2.154 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle an array-Reference with many nested Array-References, which triggers a large number of recursive calls to the DD_dump function. Successful exploitation allows context-dependent attackers to cause a denial of service (stack consumption and crash).
|Red Hat Enterprise Linux 7|
|Red Hat Enterprise Linux 6|