DEBIAN-CVE-2005-0156

DEBIAN-CVE-2005-0156 PUBLISHED CVSS 8.600000381469727 HIGH

Buffer overflow in the PerlIO implementation in Perl 5.8.0, when installed with setuid support (sperl), allows local users to execute arbitrary code by setting the PERLIO_DEBUG variable and executing a Perl script whose full pathname contains a long directory tree.

Risk Scores

CVSS v4.0

8.600000381469727

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Products

Vendor	Product	Versions
Debian:13	perl	0, 0, 0
Debian:14	perl	0, 0, 0
Debian:11	perl	0, 0, 0
Debian:12	perl	0, 0, 0

Timeline

Feb 7, 2005 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2005-0156 advisory

Open in Interactive Console →