Bug 219203 - dev-lang/perl < 5.8.8-r5 UTF-8 regex heap-based buffer overflow (CVE-2008-1927)
Bug#: 219203 (CVE-2008-1927) Product:  Gentoo Security Version: unspecified Platform: All
OS/Version: Linux Status: RESOLVED Severity: major Priority: P2
Resolution: FIXED Assigned To: security@gentoo.org Reported By: rbu@gentoo.org
Component: Vulnerabilities
URL:  http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=454792
Summary: dev-lang/perl < 5.8.8-r5 UTF-8 regex heap-based buffer overflow (CVE-2008-1927)
Keywords:  
Status Whiteboard: A2 [glsa]
Opened: 2008-04-24 21:48 0000
Description:   Opened: 2008-04-24 21:48 0000 
CVE-2008-1927 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1927):
  Double free vulnerability in Perl 5.8.8 allows context-dependent attackers to
  cause a denial of service (memory corruption and crash) via a crafted regular
  expression containing UTF8 characters.  NOTE: this issue might only be
  present on certain operating systems.

------- Comment #1 From Robert Buchholz 2008-04-24 21:55:19 0000 ------- 
See the Debian bug for details, patch is in the 5.8 stable branch and to be
released as 5.8.9.

------- Comment #2 From Pierre-Yves Rofes 2008-05-09 15:48:24 0000 ------- 
(In reply to comment #1)
> See the Debian bug for details, patch is in the 5.8 stable branch and to be
> released as 5.8.9.
> 

*ping*

------- Comment #3 From Torsten Veller 2008-05-10 14:32:57 0000 ------- 
I've commited patched ebuilds for perl and libperl:

=dev-lang/perl-5.8.8-r5
=sys-devel/libperl-5.8.8-r2

I've used the patch from debian and tested with:
<http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=5;filename=test.pl;att=2;bug=454792>

------- Comment #4 From Torsten Veller 2008-05-14 08:21:23 0000 ------- 
(In reply to comment #2)
> (In reply to comment #1)
> > See the Debian bug for details, patch is in the 5.8 stable branch and to be
> > released as 5.8.9.
> > 
> 
> *ping*

*pong* -- see comment #3

------- Comment #5 From Pierre-Yves Rofes 2008-05-14 09:13:13 0000 ------- 
(In reply to comment #3)
> I've commited patched ebuilds for perl and libperl:
> 
> =dev-lang/perl-5.8.8-r5
> =sys-devel/libperl-5.8.8-r2
> 

Arches, please test and mark stable.
Target "alpha amd64 arm hppa ia64 m68k ~mips ppc ppc64 release s390 sh sparc
~sparc-fbsd x86 ~x86-fbsd

------- Comment #6 From Jeroen Roovers 2008-05-14 14:21:42 0000 ------- 
t/op/filetest.............................Can't locate Config_heavy.pl in @INC
(@INC
contains: ../lib) at ../lib/Config.pm line 66.
# Looks like you planned 10 tests but ran 5.
FAILED--expected 10 tests, saw 5

Nevertheless, both stable for HPPA.

------- Comment #7 From Ferris McCormick 2008-05-14 14:25:47 0000 ------- 
Sparc stable for both.  All tests seem good on sparc.

------- Comment #8 From Markus Rothe 2008-05-14 15:52:47 0000 ------- 
ppc64 stable

------- Comment #9 From Christian Faulhammer 2008-05-14 17:10:25 0000 ------- 
x86 stable

------- Comment #10 From Markus Meier 2008-05-14 20:15:16 0000 ------- 
amd64 stable

------- Comment #11 From Raúl Porcel 2008-05-15 09:41:09 0000 ------- 
alpha/ia64 stable

------- Comment #12 From Tobias Scherbaum 2008-05-16 19:20:57 0000 ------- 
ppc stable

------- Comment #13 From Pierre-Yves Rofes 2008-05-17 10:42:51 0000 ------- 
glsa request filed

------- Comment #14 From Peter Volkov 2008-05-18 15:24:02 0000 ------- 
Fixed in release snapshot.

------- Comment #15 From Robert Buchholz 2008-05-18 15:59:24 0000 ------- 
not quite fixed ;-)

------- Comment #16 From Tobias Heinlein 2008-05-21 21:03:02 0000 ------- 
GLSA 200805-17