Vulnerability Description
Storable versions before 3.05 for Perl has a stack overflow. The retrieve_hook function stored the length of the class name into a signed integer but in read operations treated the length as unsigned. This allowed an attacker to craft data that could trigger the overflow.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nwclark | Storable | < 3.05 |
Related Weaknesses (CWE)
References
- https://github.com/Perl/perl5/commit/a258c17c6937f79529c8319a829310e09cdbd216.paPatch
- https://github.com/Perl/perl5/issues/15831Issue Tracking
- https://metacpan.org/release/RURBAN/Storable-3.05/changesRelease Notes
- https://www.nntp.perl.org/group/perl.perl5.porters/2017/01/msg242533.htmlThird Party Advisory
- https://www.nntp.perl.org/group/perl.perl5.porters/2017/01/msg242703.htmlThird Party Advisory
- http://www.openwall.com/lists/oss-security/2026/04/21/5Mailing List
FAQ
What is CVE-2017-20230?
CVE-2017-20230 is a vulnerability with a CVSS score of 10.0 (CRITICAL). Storable versions before 3.05 for Perl has a stack overflow. The retrieve_hook function stored the length of the class name into a signed integer but in read operations treated the length as unsigned...
How severe is CVE-2017-20230?
CVE-2017-20230 has been rated CRITICAL with a CVSS base score of 10.0/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2017-20230?
Check the references section above for vendor advisories and patch information. Affected products include: Nwclark Storable.