| Package | perl |
|---|---|
| Version | 5.20.2-3+deb8u13 |
| Related CVEs | CVE-2020-10543 CVE-2020-10878 CVE-2020-12723 |
Several vulnerabilities where found in Perl’s regular expression compiler. An application that compiles untrusted regular expressions could be exploited to cause denial of service or code injection.
It is discouraged to allow untrusted regular expressions to be compiled by Perl.
For Debian 8 jessie, these problems have been fixed in version 5.20.2-3+deb8u13.
We recommend that you upgrade your perl packages.
Further information about Extended LTS security advisories can be found in the dedicated section of our website.