Total vulnerabilities in the database
The XSLoader::load method in XSLoader in Perl does not properly locate .so files when called in a string eval, which might allow local users to execute arbitrary code via a Trojan horse library under the current working directory.
| Software | From | Fixed in |
|---|---|---|
| perl / perl | 5.25.0 | 5.25.3 |
| perl / perl | 5.23.0 | 5.24.1 |
| fedoraproject / fedora | 22 | 22.x |
| fedoraproject / fedora | 24 | 24.x |
| fedoraproject / fedora | 23 | 23.x |
| debian / debian_linux | 8.0 | 8.0.x |
| oracle / solaris | 11.3 | 11.3.x |
| oracle / solaris | 10 | 10.x |
| canonical / ubuntu_linux | 16.04 | 16.04.x |
| canonical / ubuntu_linux | 12.04 | 12.04.x |
| canonical / ubuntu_linux | 17.10 | 17.10.x |
| canonical / ubuntu_linux | 14.04 | 14.04.x |