ALSA-2024:10219

Source
https://errata.almalinux.org/8/ALSA-2024-10219.html
Import Source
https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2024:10219.json
JSON Data
https://api.test.osv.dev/v1/vulns/ALSA-2024:10219
Related
Published
2024-11-25T00:00:00Z
Modified
2024-12-02T10:52:55Z
Summary
Moderate: perl-App-cpanminus:1.7044 security update
Details

The panminus is a script to get, unpack, build and install modules from CPAN.

Security Fix(es):

  • perl-App-cpanminus: Insecure HTTP in App::cpanminus Allows Code Execution Vulnerability (CVE-2024-45321)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References

Affected packages

AlmaLinux:8 / perl-App-cpanminus

Package

Name
perl-App-cpanminus
Purl
pkg:rpm/almalinux/perl-App-cpanminus

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.7044-6.module_el8.10.0+3924+8d272be4

AlmaLinux:8 / perl-CPAN-DistnameInfo

Package

Name
perl-CPAN-DistnameInfo
Purl
pkg:rpm/almalinux/perl-CPAN-DistnameInfo

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.12-13.module_el8.6.0+2810+886f1911

AlmaLinux:8 / perl-CPAN-Meta-Check

Package

Name
perl-CPAN-Meta-Check
Purl
pkg:rpm/almalinux/perl-CPAN-Meta-Check

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.014-6.module_el8.10.0+3924+8d272be4

AlmaLinux:8 / perl-File-pushd

Package

Name
perl-File-pushd
Purl
pkg:rpm/almalinux/perl-File-pushd

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.014-6.module_el8.6.0+2851+b32f1bac

AlmaLinux:8 / perl-Module-CPANfile

Package

Name
perl-Module-CPANfile
Purl
pkg:rpm/almalinux/perl-Module-CPANfile

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.1002-7.module_el8.6.0+2792+592c5e39

AlmaLinux:8 / perl-Parse-PMFile

Package

Name
perl-Parse-PMFile
Purl
pkg:rpm/almalinux/perl-Parse-PMFile

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.41-7.module_el8.6.0+2851+b32f1bac

AlmaLinux:8 / perl-String-ShellQuote

Package

Name
perl-String-ShellQuote
Purl
pkg:rpm/almalinux/perl-String-ShellQuote

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.04-24.module_el8.6.0+2810+886f1911