« List of all CVEs

CVE-2014-4330

Published: 9/30/2014 Last updated: 8/6/2024 Reserved: 6/18/2014

The Dumper method in Data::Dumper before 2.154, as used in Perl 5.20.1 and earlier, allows context-dependent attackers to cause a denial of service (stack consumption and crash) via an Array-Reference with many nested Array-References, which triggers a large number of recursive calls to the DD_dump function.

CNA assigner: mitre (8254265b-2729-46b6-b9e3-3dfca2d5bfca) Requested by: n/a

Opam packages affected (3)

bap-std conf-perl goblint-cil

Products affected (1)

Product	Vendor	Version
n/a	n/a	< 21.2R3-S5

References (32)