Updated perl packages fix security vulnerabilityPublication date: 03 Jan 2018
Affected Mageia releases : 6
CVE: CVE-2017-12837 , CVE-2017-12883
Jakub Wilk reported a heap buffer overflow flaw in the regular expression compiler, allowing a remote attacker to cause a denial of service via a specially crafted regular expression with the case-insensitive modifier (CVE-2017-12837). Jakub Wilk reported a buffer over-read flaw in the regular expression parser, allowing a remote attacker to cause a denial of service or information leak (CVE-2017-12883).