Activity log for bug #1918154
| Date | Who | What changed | Old value | New value | Message |
|---|---|---|---|---|---|
| 2021-03-08 15:38:39 | Ghada Khalil | bug | added bug | ||
| 2021-03-08 15:39:09 | Ghada Khalil | cve linked | 2020-10878 | ||
| 2021-03-08 15:42:45 | Ghada Khalil | tags | stx.5.0 stx.security | ||
| 2021-03-08 15:42:53 | Ghada Khalil | description | CVE-2020-10878: perl: perl before 5.30.3 has an integer overflow CVSSv2: 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P) Description: Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection. References: https://nvd.nist.gov/vuln/detail/CVE-2020-10878 https://access.redhat.com/security/cve/CVE-2020-10878 https://access.redhat.com/errata/RHSA-2021:0343 Required package version: perl-5.16.3-299.el7_9.src.rpm Packages: perl Found during March 2021 StarlingX CVE Scan | CVE-2020-10878: perl: perl before 5.30.3 has an integer overflow CVSSv2: 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P) Description: Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)] == NOTHING" situation. A crafted regular expression could lead to malformed bytecode with a possibility of instruction injection. References: https://nvd.nist.gov/vuln/detail/CVE-2020-10878 https://access.redhat.com/security/cve/CVE-2020-10878 https://access.redhat.com/errata/RHSA-2021:0343 Required package version: perl-5.16.3-299.el7_9.src.rpm Packages: perl Found during March 2021 StarlingX CVE Scan on stx master | |
| 2021-03-08 15:44:17 | Ghada Khalil | starlingx: importance | Undecided | High | |
| 2021-03-08 15:44:21 | Ghada Khalil | starlingx: status | New | Triaged | |
| 2021-03-11 23:25:08 | Ghada Khalil | starlingx: assignee | Joe Slater (jslater0wind) | ||
| 2021-03-12 16:54:08 | Joe Slater | starlingx: status | Triaged | Fix Released | |
| 2021-06-04 14:38:11 | OpenStack Infra | tags | stx.5.0 stx.security | in-f-centos8 stx.5.0 stx.security | |
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2016-10739 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2017-6519 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2018-10360 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2018-1116 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2018-1122 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2018-12404 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2018-1312 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2018-13139 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2018-14348 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2018-14498 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2018-15473 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2018-17199 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2018-18384 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2018-19519 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2018-4700 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2018-5741 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2018-5742 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2018-5743 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2018-8905 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2019-0220 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2019-10160 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2019-10218 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2019-11068 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2019-11745 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2019-12735 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2019-13232 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2019-13734 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2019-16056 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2019-17006 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2019-3813 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2019-3880 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2019-5482 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2019-6477 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2019-9636 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2019-9924 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2019-9948 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2020-0549 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2020-10772 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2020-12049 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2020-12663 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2020-5208 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2020-6851 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2020-8112 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2020-8617 | ||
| 2021-06-04 14:38:12 | OpenStack Infra | cve linked | 2021-26937 |
