CVE-2024-55564 Affecting libposix-2008-perl package, versions <0.24-1

Q: How to fix?

Upgrade Debian:unstable libposix-2008-perl to version 0.24-1 or higher.

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

Snyk IDSNYK-DEBIANUNSTABLE-LIBPOSIX2008PERL-8492218
published10 Dec 2024
disclosed9 Dec 2024

Report a new vulnerability Found a mistake?

Introduced: 9 Dec 2024

NewCVE-2024-55564 (opens in a new tab)

How to fix?

Upgrade Debian:unstable libposix-2008-perl to version 0.24-1 or higher.

NVD Description

Note: Versions mentioned in the description apply only to the upstream libposix-2008-perl package and not the libposix-2008-perl package as distributed by Debian. See How to fix? for Debian:unstable relevant fixed versions and status.

The POSIX::2008 package before 0.24 for Perl has a potential _execve50c env buffer overflow.

References

https://security-tracker.debian.org/tracker/CVE-2024-55564
https://metacpan.org/dist/POSIX-2008/changes