Description

In Perl before 5.38.2, S_parse_uniprop_string in regcomp.c can write to unallocated space because a property name associated with a \p{...} regular expression construct is mishandled. The earliest affected version is 5.30.0.

Remediation

References

CVE-2023-47100

Related Vulnerabilities

PHP Out-of-bounds Read Vulnerability (CVE-2019-11036)

Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-5062)

WordPress Plugin Floating Tweets Multiple Vulnerabilities (1.0.1)

PHP Other Vulnerability (CVE-2007-1396)

WordPress Plugin Cryptocurrency Widgets-Price Ticker & Coins List Security Bypass (2.4)

Severity

Critical

Classification

CVE-2023-47100 CWE-755 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities