REDHAT-BUG-588269
First published: Mon May 03 2010(Updated: )
Safe.pm 2.26 and earlier (except 2.20 through 2.23 if using a threads-enabled Perl), when used in Perl 5.10.0 and earlier, may allow attackers to break out of safe compartment in (1) Safe::reval or (2) Safe::rdo using subroutine references, whose execution is delayed to happen outside of the safe compartment. If a victim was tricked into running a specially-crafted Perl script, using Safe extension module, it could lead to intended Safe module restrictions bypass, if the returned subroutine reference was called from outside of the compartment. Different vulnerability than <a href="https://access.redhat.com/security/cve/CVE-2010-1168">CVE-2010-1168</a>. Solution: Ugrade to Safe.pm v2.27 or higher. References: [1] <a href="http://search.cpan.org/~rgarcia/Safe-2.27/Safe.pm">http://search.cpan.org/~rgarcia/Safe-2.27/Safe.pm</a> Acknowledgements: Red Hat would like to thank Tim Bunce for responsibly reporting this flaw. Upstream credits also Rafaël Garcia-Suarez for discovering of this issue.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| CPAN | <2.27 | |
| Perl 5.30.0 | <=5.10.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://access.redhat.com/security/cve/CVE-2010-1168
- http://search.cpan.org/~rgarcia/Safe-2.27/Safe.pm
- https://access.redhat.com/security/cve/CVE-2010-1447
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1447
- http://security-tracker.debian.org/tracker/CVE-2010-1447
- http://www.postgresql.org/about/news.1203
- https://bugs.launchpad.net/bugs/cve/2010-1447
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=588269
- http://secunia.com/advisories/39845
- http://www.vupen.com/english/advisories/2010/1167
- https://access.redhat.com/security/cve/CVE-2010-1169
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=588269#c8
- http://www.openwall.com/lists/oss-security/2010/05/20/5
- https://rhn.redhat.com/errata/RHSA-2010-0457.html
- https://rhn.redhat.com/errata/RHSA-2010-0458.html
- https://bugzilla.redhat.com/show_bug.cgi?id=588269
Frequently Asked Questions
What is the severity of REDHAT-BUG-588269?
The severity of REDHAT-BUG-588269 is classified as moderate.
How do I fix REDHAT-BUG-588269?
You can fix REDHAT-BUG-588269 by upgrading to Safe.pm version 2.27 or later.
Which versions of Perl are affected by REDHAT-BUG-588269?
Perl versions up to and including 5.10.0 are affected by REDHAT-BUG-588269.
What vulnerabilities are associated with REDHAT-BUG-588269?
REDHAT-BUG-588269 is associated with CVE-2010-1168 and CVE-2010-1447.
What is Safe.pm in the context of REDHAT-BUG-588269?
Safe.pm is a Perl module that provides a compartmentalized environment for executing untrusted code, and it is vulnerable in versions 2.26 and earlier.
- agent/references
- agent/type
- agent/last-modified-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2010-1447
- agent/first-publish-date
- agent/source
- agent/severity
- agent/description
- agent/event
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/cpan
- canonical/cpan
- vendor/perl
- canonical/perl 5.30.0