Debian Security Advisory DSA 1678-2 (perl) Network Vulnerability

Summary

The remote host is missing an update to perl announced via advisory DSA 1678-2.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201678-2

Insight

The perl update in DSA-1678-1 contains a regression which is triggered by some Perl scripts which have changed into the directory tree removed by File::Path::rmtree. In particular, this happens if File::Temp::tempdir is used. This new update corrects this regression. For the stable distribution (etch), this problem has been fixed in version 5.8.8-7etch6. For the unstable distribution (sid), this problem will be fixed soon. We recommend that you upgrade your perl packages.

Severity

Classification

CVE CVE-2008-5302, CVE-2008-5303
CVSS Base Score: 6.9
AV:L/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Debian Security Advisory DSA 1058-1 (awstats)
Debian Security Advisory DSA 020-1 (php4)
Debian Security Advisory DSA 1094-1 (gforge)
Debian Security Advisory DSA 1111-1 (kernel-source-2.6.8 et. al.)
Debian Security Advisory DSA 1041-1 (abc2ps)

Take action and discover your vulnerabilities