Vulnerability Details CVE-2017-20230
Storable versions before 3.05 for Perl has a stack overflow.
The retrieve_hook function stored the length of the class name into a signed integer but in read operations treated the length as unsigned. This allowed an attacker to craft data that could trigger the overflow.
Exploit prediction scoring system (EPSS) score
CVSS Severity
CVSS v3 Score 10.0
References
- https://github.com/Perl/perl5/commit/a258c17c6937f79529c8319a829310e09cdbd216.patch
- https://github.com/Perl/perl5/issues/15831
- https://metacpan.org/release/RURBAN/Storable-3.05/changes
- https://www.nntp.perl.org/group/perl.perl5.porters/2017/01/msg242533.html
- https://www.nntp.perl.org/group/perl.perl5.porters/2017/01/msg242703.html
- http://www.openwall.com/lists/oss-security/2026/04/21/5