Test ID:	1.3.6.1.4.1.25623.1.0.882994
Category:	CentOS Local Security Checks
Title:	CentOS Update for perl CESA-2019:0109 centos7
Summary:	The remote host is missing an update for the 'perl'; package(s) announced via the CESA-2019:0109 advisory.
Description:	Summary: The remote host is missing an update for the 'perl' package(s) announced via the CESA-2019:0109 advisory. Vulnerability Insight: Perl is a high-level programming language that is commonly used for system administration utilities and web programming. Security Fix(es): * perl: Integer overflow leading to buffer overflow in Perl_my_setenv() (CVE-2018-18311) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. Red Hat would like to thank the Perl project for reporting this issue. Upstream acknowledges Jayakrishna Menon as the original reporter. Affected Software/OS: perl on CentOS 7. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2018-18311 BugTraq ID: 106145 http://www.securityfocus.com/bid/106145 Bugtraq: 20190326 APPLE-SA-2019-3-25-2 macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra (Google Search) https://seclists.org/bugtraq/2019/Mar/42 https://bugzilla.redhat.com/show_bug.cgi?id=1646730 https://github.com/Perl/perl5/commit/34716e2a6ee2af96078d62b065b7785c001194be https://kc.mcafee.com/corporate/index?page=content&id=SB10278 https://metacpan.org/changes/release/SHAY/perl-5.26.3 https://metacpan.org/changes/release/SHAY/perl-5.28.1 https://rt.perl.org/Ticket/Display.html?id=133204 https://security.netapp.com/advisory/ntap-20190221-0003/ https://support.apple.com/kb/HT209600 Debian Security Information: DSA-4347 (Google Search) https://www.debian.org/security/2018/dsa-4347 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RWQGEB543QN7SSBRKYJM6PSOC3RLYGSM/ http://seclists.org/fulldisclosure/2019/Mar/49 https://security.gentoo.org/glsa/201909-01 https://www.oracle.com/security-alerts/cpuapr2020.html https://www.oracle.com/security-alerts/cpujul2020.html https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html https://lists.debian.org/debian-lts-announce/2018/11/msg00039.html RedHat Security Advisories: RHBA-2019:0327 https://access.redhat.com/errata/RHBA-2019:0327 RedHat Security Advisories: RHSA-2019:0001 https://access.redhat.com/errata/RHSA-2019:0001 RedHat Security Advisories: RHSA-2019:0010 https://access.redhat.com/errata/RHSA-2019:0010 RedHat Security Advisories: RHSA-2019:0109 https://access.redhat.com/errata/RHSA-2019:0109 RedHat Security Advisories: RHSA-2019:1790 https://access.redhat.com/errata/RHSA-2019:1790 RedHat Security Advisories: RHSA-2019:1942 https://access.redhat.com/errata/RHSA-2019:1942 RedHat Security Advisories: RHSA-2019:2400 https://access.redhat.com/errata/RHSA-2019:2400 http://www.securitytracker.com/id/1042181 https://usn.ubuntu.com/3834-1/ https://usn.ubuntu.com/3834-2/
Copyright	Copyright (C) 2019 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.