diff --git a/lib/CPAN/Audit/DB.pm b/lib/CPAN/Audit/DB.pm index 3842ecf..53ef80d 100644 --- a/lib/CPAN/Audit/DB.pm +++ b/lib/CPAN/Audit/DB.pm @@ -1,12 +1,12 @@ -# created by util/generate at Wed Jan 3 12:47:31 2024 -# cpan-security-advisory +cefee287c3b16dd42a8163123fdbeaec6d8f4377 +# created by util/generate at Wed Jan 3 21:54:50 2024 +# cpan-security-advisory bdc3863dd33276fe8343e89da2006905c0cdc130 # package CPAN::Audit::DB; use strict; use warnings; -our $VERSION = '20240103.003'; +our $VERSION = '20240103.004'; sub db { { @@ -63357,17 +63357,20 @@ sub db { 'severity' => 'critical' }, { - 'affected_versions' => '>=5.34.0', + 'affected_versions' => '=5.34.0', 'cves' => [ 'CVE-2022-48522' ], 'description' => 'In Perl 5.34.0, function S_find_uninit_var in sv.c has a stack-based crash that can lead to remote code execution or local privilege escalation. ', 'distribution' => 'perl', - 'fixed_versions' => undef, + 'fixed_versions' => '>=5.34.1', 'id' => 'CPANSA-perl-2022-48522', 'references' => [ - 'https://github.com/Perl/perl5/blob/79a7b254d85a10b65126ad99bf10e70480569d68/sv.c#L16336-L16345' + 'https://github.com/Perl/perl5/blob/79a7b254d85a10b65126ad99bf10e70480569d68/sv.c#L16336-L16345', + 'https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48522', + 'https://security.netapp.com/advisory/ntap-20230915-0008/', + 'https://ubuntu.com/security/CVE-2022-48522' ], 'reported' => '2023-08-22', 'severity' => undef diff --git a/lib/CPAN/Audit/DB.pm.gpg b/lib/CPAN/Audit/DB.pm.gpg index 03d7df9..c4f2ba7 100644 --- a/lib/CPAN/Audit/DB.pm.gpg +++ b/lib/CPAN/Audit/DB.pm.gpg @@ -1,16 +1,16 @@ -----BEGIN PGP SIGNATURE----- -iQIzBAABCAAdFiEEdaq0LLoNfzfw1oht+D+NXoeLYEEFAmWVnbMACgkQ+D+NXoeL -YEFyrxAAkM+PGcQ4zM2ffOfIzKfjZwHjHyp3TGzyfqUD+RFrzdmB9JX3TQ+IxcDb -O+n/Uq94YVtoQ3VEov4Lqn7iRD4pM3QJuyyXUYY9oqFAjDaS75m4/oqQdoomxntM -x3ccy/cmozi5wiiTslKCB20FXb/NZP1GDaLt+nhIXMlHE0/Js122d1XRX6ujGqci -IZdyTxBp5KTKAPtEl0KhFMWb0B1BU1lzPFE2w8k/LmBvmW3dLus/0/SbsBHak2PP -WbgqZvz2Dc8tt8vqwrjIRdAvKiLhjvv+PYdZMKdHjtvFQu9yPsosv1tdjgiaPtxC -+09ZjZxG1X84FtUQjP+9fAHNziTHadwOZc2i4J1s+uF9xFdF+ar40JX3mXDBW8KI -sF8/jAUJa1Lfl+N4PEfUs7F3iyzC6rbMlztypeWxAHC7S7upt8g1y7zBxk81OLlS -iNLDdhtcrD/b+4fOR3yPdrv1KUv0kQm3oqQo4dv4yeoZZpY8pyO/xOBAYe077ffF -c2X9wmANOwZ0lM4YWqGSkr2MuN68YdxQPQpE0MeZVK/gPC3MKcGDkrlAM9u+vJ46 -QhxyxZmkQkwi3E9K3Kb7FjZieV2I15eNV2QlaiIHBqy95GfWf/9OKje8+rdqCwRM -EflOKJbO/gDQdaEIyU6lgV+PwVz/yjR9hoytG2PKU7sbfXbSZRI= -=jQM/ +iQIzBAABCAAdFiEEdaq0LLoNfzfw1oht+D+NXoeLYEEFAmWWHfoACgkQ+D+NXoeL +YEEJmQ//Y2Bxkajm4LDUFVkDmWNgbHfQ7F0rXHLnrHMXrOCZwMRD759bRadZcGZ0 +pgUoL9K634MGoID0KCwD1gP7m2WPWziodXPTLEQILEb/7DyNq6lgWU3dRMW3j7r1 +VDK/TTpHw6FXTLOgEM7MXwRDXbCm9gI67DrIem12fUuptAMJSrzEI1NUbmfKZtgY +S8zwXZijHx3qlrLX64atqwpdkb8ZASqnb8pBWzmCFMGXH3H5/pvgQNgyYtksi2qV ++FKAJ3gKyU+rgvn91lBNLaqzXtvVRUl0q7xDHhMZu8qjQWTlRUzqwk65alCKlELx +hGv6iFCx93oT6GEDPCLhAgJvf6VBs+CxcY8LvQeruw7NSEosVU4B4SZp3QPeyGlY +Lo7wkycEKVyrz6ILMCdMYbNNsKfUHwgVOrFSG1fn6yJnocbrb1Rn+h6veJLkiuW+ +lJalNMQwtLzlU6besUnxzk2HBFy8yRO7sVtZs99YkJkLQyfZOb+RjZaqZPlJuWkS +a6OaCQDNbyA/Lk4/O51/bFSEXR+L6ZLHAhQHkPVSJg5jjWbxsX5oF2cTZSAlGBAe +qczAVeOtCmHWKl7LH8IDFznL6r7ufOKXym2GBpx0v0aUxCGUKOclADxyoPWFX/Or +u1+UppxsFCF46Xlv98SEp9aVsG4aJJQZUThj0AotigZeBaBqvpc= +=+bH0 -----END PGP SIGNATURE-----