Nortel Response to Sun Alert 231524 - Security Vulnerability in Solaris 10 Perl 5.8
| Description: |
Sun Microsystems has recently issued Sun Alert 231524 - Security Vulnerability in Solaris 10 Perl 5.8. Some Nortel products contain this software as a component and thus are potentially affected by the vulnerabilities addressed. This bulletin provides a multi-product consolidated response for the Nortel products which are potentially affected. Solaris 8 and Solaris 9 are not affected by these issues. Sun Alert 231524 (http://sunsolve.sun.com/search/document.do?assetkey=1-66-231524-1) This bulletin addresses the following CVEs: 1. CVE-2007-5116 at http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5116 Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp.c) in Perl 5.8 allows context-dependent attackers to execute arbitrary code by switching from byte to Unicode (UTF) characters in a regular expression. Before taking any action please ensure that you are viewing the latest official version of this security advisory by referencing http://www.nortel.com/securityadvisories |
| Type: |
Security Advisories |
| Number: |
2008009063, Rev 1 |
| Status: |
Retired |
| Date: |
2009-03-08 |
