CVE-2023-47038
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2023-47038
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-47038.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2023-47038
- Related
- Published
- 2023-12-18T14:15:08Z
- Modified
- 2025-03-28T02:10:21.402553Z
- Downstream
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
A vulnerability was found in perl 5.30.0 through 5.38.0. This issue occurs when a crafted regular expression is compiled by perl, which can allow an attacker controlled byte buffer overflow in a heap allocated buffer.
- References
-
- https://access.redhat.com/errata/RHSA-2024:2228
- https://access.redhat.com/errata/RHSA-2024:3128
- https://perldoc.perl.org/perl5382delta#CVE-2023-47038-Write-past-buffer-end-via-illegal-user-defined-Unicode-property
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1056746
- https://bugzilla.redhat.com/show_bug.cgi?id=2249523
- https://access.redhat.com/security/cve/CVE-2023-47038
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GNEEWAACXQCEEAKSG7XX2D5YDRWLCIZJ/
- https://security.alpinelinux.org/vuln/CVE-2023-47038
- https://security-tracker.debian.org/tracker/CVE-2023-47038
Affected packages
Alpine:v3.15 / perl
Package
- Name
- perl
- Purl
- pkg:apk/alpine/perl?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.34.2-r0
Affected versions
5.*
5.10.0-r0
5.10.0-r1
5.10.1-r0
5.10.1-r1
5.10.1-r2
5.12.1-r0
5.12.2-r0
5.12.2-r1
5.12.3-r0
5.14.0-r0
5.14.1-r0
5.14.2-r0
5.14.2-r1
5.16.0-r0
5.16.1-r0
5.16.2-r0
5.16.3-r0
5.18.0-r0
5.18.1-r0
5.18.2-r0
5.20.0-r0
5.20.1-r0
5.20.2-r0
5.20.2-r1
5.22.0-r0
5.22.1-r0
5.22.2-r0
5.24.0-r0
5.24.0-r1
5.24.0-r2
5.24.1-r0
5.24.1-r1
5.24.1-r2
5.26.0-r0
5.26.1-r0
5.26.1-r1
5.26.2-r0
5.26.2-r1
5.26.3-r0
5.28.1-r0
5.28.2-r0
5.28.2-r1
5.30.0-r0
5.30.0-r1
5.30.0-r2
5.30.1-r0
5.30.2-r0
5.30.3-r0
5.30.3-r1
5.30.3-r2
5.32.0-r0
5.32.1-r0
5.34.0-r0
5.34.0-r1
Alpine:v3.16 / perl
Package
- Name
- perl
- Purl
- pkg:apk/alpine/perl?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.34.2-r0
Affected versions
5.*
5.10.0-r0
5.10.0-r1
5.10.1-r0
5.10.1-r1
5.10.1-r2
5.12.1-r0
5.12.2-r0
5.12.2-r1
5.12.3-r0
5.14.0-r0
5.14.1-r0
5.14.2-r0
5.14.2-r1
5.16.0-r0
5.16.1-r0
5.16.2-r0
5.16.3-r0
5.18.0-r0
5.18.1-r0
5.18.2-r0
5.20.0-r0
5.20.1-r0
5.20.2-r0
5.20.2-r1
5.22.0-r0
5.22.1-r0
5.22.2-r0
5.24.0-r0
5.24.0-r1
5.24.0-r2
5.24.1-r0
5.24.1-r1
5.24.1-r2
5.26.0-r0
5.26.1-r0
5.26.1-r1
5.26.2-r0
5.26.2-r1
5.26.3-r0
5.28.1-r0
5.28.2-r0
5.28.2-r1
5.30.0-r0
5.30.0-r1
5.30.0-r2
5.30.1-r0
5.30.2-r0
5.30.3-r0
5.30.3-r1
5.30.3-r2
5.32.0-r0
5.32.1-r0
5.34.0-r0
5.34.0-r1
5.34.1-r0
Alpine:v3.17 / perl
Package
- Name
- perl
- Purl
- pkg:apk/alpine/perl?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.36.2-r0
Affected versions
5.*
5.10.0-r0
5.10.0-r1
5.10.1-r0
5.10.1-r1
5.10.1-r2
5.12.1-r0
5.12.2-r0
5.12.2-r1
5.12.3-r0
5.14.0-r0
5.14.1-r0
5.14.2-r0
5.14.2-r1
5.16.0-r0
5.16.1-r0
5.16.2-r0
5.16.3-r0
5.18.0-r0
5.18.1-r0
5.18.2-r0
5.20.0-r0
5.20.1-r0
5.20.2-r0
5.20.2-r1
5.22.0-r0
5.22.1-r0
5.22.2-r0
5.24.0-r0
5.24.0-r1
5.24.0-r2
5.24.1-r0
5.24.1-r1
5.24.1-r2
5.26.0-r0
5.26.1-r0
5.26.1-r1
5.26.2-r0
5.26.2-r1
5.26.3-r0
5.28.1-r0
5.28.2-r0
5.28.2-r1
5.30.0-r0
5.30.0-r1
5.30.0-r2
5.30.1-r0
5.30.2-r0
5.30.3-r0
5.30.3-r1
5.30.3-r2
5.32.0-r0
5.32.1-r0
5.34.0-r0
5.34.0-r1
5.34.1-r0
5.36.0-r0
5.36.0-r1
5.36.0-r2
Alpine:v3.18 / perl
Package
- Name
- perl
- Purl
- pkg:apk/alpine/perl?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.36.2-r0
Affected versions
5.*
5.10.0-r0
5.10.0-r1
5.10.1-r0
5.10.1-r1
5.10.1-r2
5.12.1-r0
5.12.2-r0
5.12.2-r1
5.12.3-r0
5.14.0-r0
5.14.1-r0
5.14.2-r0
5.14.2-r1
5.16.0-r0
5.16.1-r0
5.16.2-r0
5.16.3-r0
5.18.0-r0
5.18.1-r0
5.18.2-r0
5.20.0-r0
5.20.1-r0
5.20.2-r0
5.20.2-r1
5.22.0-r0
5.22.1-r0
5.22.2-r0
5.24.0-r0
5.24.0-r1
5.24.0-r2
5.24.1-r0
5.24.1-r1
5.24.1-r2
5.26.0-r0
5.26.1-r0
5.26.1-r1
5.26.2-r0
5.26.2-r1
5.26.3-r0
5.28.1-r0
5.28.2-r0
5.28.2-r1
5.30.0-r0
5.30.0-r1
5.30.0-r2
5.30.1-r0
5.30.2-r0
5.30.3-r0
5.30.3-r1
5.30.3-r2
5.32.0-r0
5.32.1-r0
5.34.0-r0
5.34.0-r1
5.34.1-r0
5.36.0-r0
5.36.0-r1
5.36.0-r2
5.36.0-r3
5.36.1-r0
5.36.1-r1
5.36.1-r2
Alpine:v3.19 / perl
Package
- Name
- perl
- Purl
- pkg:apk/alpine/perl?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.38.1-r0
Affected versions
5.*
5.10.0-r0
5.10.0-r1
5.10.1-r0
5.10.1-r1
5.10.1-r2
5.12.1-r0
5.12.2-r0
5.12.2-r1
5.12.3-r0
5.14.0-r0
5.14.1-r0
5.14.2-r0
5.14.2-r1
5.16.0-r0
5.16.1-r0
5.16.2-r0
5.16.3-r0
5.18.0-r0
5.18.1-r0
5.18.2-r0
5.20.0-r0
5.20.1-r0
5.20.2-r0
5.20.2-r1
5.22.0-r0
5.22.1-r0
5.22.2-r0
5.24.0-r0
5.24.0-r1
5.24.0-r2
5.24.1-r0
5.24.1-r1
5.24.1-r2
5.26.0-r0
5.26.1-r0
5.26.1-r1
5.26.2-r0
5.26.2-r1
5.26.3-r0
5.28.1-r0
5.28.2-r0
5.28.2-r1
5.30.0-r0
5.30.0-r1
5.30.0-r2
5.30.1-r0
5.30.2-r0
5.30.3-r0
5.30.3-r1
5.30.3-r2
5.32.0-r0
5.32.1-r0
5.34.0-r0
5.34.0-r1
5.34.1-r0
5.36.0-r0
5.36.0-r1
5.36.0-r2
5.36.0-r3
5.36.1-r0
5.36.1-r1
5.36.1-r2
5.36.1-r3
5.38.0-r0
Alpine:v3.20 / perl
Package
- Name
- perl
- Purl
- pkg:apk/alpine/perl?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.38.1-r0
Affected versions
5.*
5.10.0-r0
5.10.0-r1
5.10.1-r0
5.10.1-r1
5.10.1-r2
5.12.1-r0
5.12.2-r0
5.12.2-r1
5.12.3-r0
5.14.0-r0
5.14.1-r0
5.14.2-r0
5.14.2-r1
5.16.0-r0
5.16.1-r0
5.16.2-r0
5.16.3-r0
5.18.0-r0
5.18.1-r0
5.18.2-r0
5.20.0-r0
5.20.1-r0
5.20.2-r0
5.20.2-r1
5.22.0-r0
5.22.1-r0
5.22.2-r0
5.24.0-r0
5.24.0-r1
5.24.0-r2
5.24.1-r0
5.24.1-r1
5.24.1-r2
5.26.0-r0
5.26.1-r0
5.26.1-r1
5.26.2-r0
5.26.2-r1
5.26.3-r0
5.28.1-r0
5.28.2-r0
5.28.2-r1
5.30.0-r0
5.30.0-r1
5.30.0-r2
5.30.1-r0
5.30.2-r0
5.30.3-r0
5.30.3-r1
5.30.3-r2
5.32.0-r0
5.32.1-r0
5.34.0-r0
5.34.0-r1
5.34.1-r0
5.36.0-r0
5.36.0-r1
5.36.0-r2
5.36.0-r3
5.36.1-r0
5.36.1-r1
5.36.1-r2
5.36.1-r3
5.38.0-r0
Alpine:v3.21 / perl
Package
- Name
- perl
- Purl
- pkg:apk/alpine/perl?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.38.1-r0
Affected versions
5.*
5.10.0-r0
5.10.0-r1
5.10.1-r0
5.10.1-r1
5.10.1-r2
5.12.1-r0
5.12.2-r0
5.12.2-r1
5.12.3-r0
5.14.0-r0
5.14.1-r0
5.14.2-r0
5.14.2-r1
5.16.0-r0
5.16.1-r0
5.16.2-r0
5.16.3-r0
5.18.0-r0
5.18.1-r0
5.18.2-r0
5.20.0-r0
5.20.1-r0
5.20.2-r0
5.20.2-r1
5.22.0-r0
5.22.1-r0
5.22.2-r0
5.24.0-r0
5.24.0-r1
5.24.0-r2
5.24.1-r0
5.24.1-r1
5.24.1-r2
5.26.0-r0
5.26.1-r0
5.26.1-r1
5.26.2-r0
5.26.2-r1
5.26.3-r0
5.28.1-r0
5.28.2-r0
5.28.2-r1
5.30.0-r0
5.30.0-r1
5.30.0-r2
5.30.1-r0
5.30.2-r0
5.30.3-r0
5.30.3-r1
5.30.3-r2
5.32.0-r0
5.32.1-r0
5.34.0-r0
5.34.0-r1
5.34.1-r0
5.36.0-r0
5.36.0-r1
5.36.0-r2
5.36.0-r3
5.36.1-r0
5.36.1-r1
5.36.1-r2
5.36.1-r3
5.38.0-r0
Debian:11 / perl
Package
- Name
- perl
- Purl
- pkg:deb/debian/perl?arch=source
Debian:12 / perl
Package
- Name
- perl
- Purl
- pkg:deb/debian/perl?arch=source
Debian:13 / perl
Package
- Name
- perl
- Purl
- pkg:deb/debian/perl?arch=source
Git / github.com/perl/perl5
Affected versions
v5.*
v5.30.0
v5.31.0
v5.31.1
v5.31.10
v5.31.11
v5.31.2
v5.31.3
v5.31.4
v5.31.5
v5.31.6
v5.31.7
v5.31.8
v5.31.9
v5.32.0
v5.32.0-RC0
v5.32.0-RC1
v5.33.0
v5.33.1
v5.33.2
v5.33.3
v5.33.4
v5.33.5
v5.33.6
v5.33.7
v5.33.8
v5.33.9
v5.34.0
v5.34.0-RC1
v5.34.0-RC2
v5.35.0
v5.35.1
v5.35.10
v5.35.11
v5.35.2
v5.35.3
v5.35.4
v5.35.5
v5.35.6
v5.35.7
v5.35.8
v5.35.9
v5.36.0
v5.36.0-RC1
v5.36.0-RC3
v5.37.0
v5.37.1
v5.37.10
v5.37.11
v5.37.2
v5.37.3
v5.37.4
v5.37.5
v5.37.6
v5.37.7
v5.37.8
v5.37.9
v5.38.0
v5.38.0-RC1
v5.38.0-RC2