CVE 2016-2381
Perl might allow context-dependent attackers to bypass the taint protection mechanism in a child process via duplicate environment variables in envp.
See the 
CVE page on Mitre.org
for more details.
Launchpad.net
References
- MLIST: [porters] 20160301 CV...
- CONFIRM: http://perl5.git.perl....
- DEBIAN: DSA-3501
- CONFIRM: https://h20566.www2.hp...
- CONFIRM: http://www.oracle.com/...
- BID: 83802
- SUSE: openSUSE-SU-2016:0881
- UBUNTU: USN-2916-1
- GENTOO: GLSA-201701-75
- CONFIRM: http://www.oracle.com/...
- CONFIRM: http://www.oracle.com/...
- MISC: https://www.oracle.com...
- MISC: https://www.oracle.com...
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0f7b58d
(Get the code!)