RLSA-2024:10219

See a problem?
Please try reporting it to the source first.

Source

https://errata.rockylinux.org/RLSA-2024:10219

Import Source

https://storage.googleapis.com/resf-osv-data/RLSA-2024:10219.json

JSON Data

https://api.osv.dev/v1/vulns/RLSA-2024:10219

Related

CVE-2024-45321

Published

2024-12-19T04:18:05.672002Z

Modified

2024-12-19T04:20:55.129561Z

Summary

Moderate: perl-App-cpanminus:1.7044 security update

Details

The panminus is a script to get, unpack, build and install modules from CPAN.

Security Fix(es):

perl-App-cpanminus: Insecure HTTP in App::cpanminus Allows Code Execution Vulnerability (CVE-2024-45321)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References

Credits

- Rocky Enterprise Software Foundation
- Red Hat

Affected packages

Rocky Linux:8 / perl-App-cpanminus

Package

Name: perl-App-cpanminus
Purl: pkg:rpm/rocky-linux/perl-App-cpanminus?distro=rocky-linux-8-x86-64&epoch=0

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.7044-6.module+el8.10.0+1886+1635aa55

Rocky Linux:8 / perl-CPAN-DistnameInfo

Package

Name: perl-CPAN-DistnameInfo
Purl: pkg:rpm/rocky-linux/perl-CPAN-DistnameInfo?distro=rocky-linux-8-x86-64&epoch=0

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:0.12-13.module+el8.10.0+1616+0d20cc68

Rocky Linux:8 / perl-CPAN-Meta-Check

Package

Name: perl-CPAN-Meta-Check
Purl: pkg:rpm/rocky-linux/perl-CPAN-Meta-Check?distro=rocky-linux-8-x86-64&epoch=0

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:0.014-6.module+el8.10.0+1890+1072d5cf

Rocky Linux:8 / perl-File-pushd

Package

Name: perl-File-pushd
Purl: pkg:rpm/rocky-linux/perl-File-pushd?distro=rocky-linux-8-x86-64&epoch=0

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.014-6.module+el8.10.0+1890+1072d5cf

Rocky Linux:8 / perl-Module-CPANfile

Package

Name: perl-Module-CPANfile
Purl: pkg:rpm/rocky-linux/perl-Module-CPANfile?distro=rocky-linux-8-x86-64&epoch=0

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.1002-7.module+el8.10.0+1890+1072d5cf

Rocky Linux:8 / perl-Parse-PMFile

Package

Name: perl-Parse-PMFile
Purl: pkg:rpm/rocky-linux/perl-Parse-PMFile?distro=rocky-linux-8-x86-64&epoch=0

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:0.41-7.module+el8.10.0+1890+1072d5cf

Rocky Linux:8 / perl-String-ShellQuote

Package

Name: perl-String-ShellQuote
Purl: pkg:rpm/rocky-linux/perl-String-ShellQuote?distro=rocky-linux-8-x86-64&epoch=0

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.04-24.module+el8.10.0+1890+1072d5cf