_is_safe in the File::Temp module for Perl does not properly handle symlinks.
Improper Link Resolution Before File Access ('Link Following')
Unverified Ownership
-
Package | Type | OS Name | OS Version | Affected Ranges | Fix Versions |
---|---|---|---|---|---|
debian/perl | deb | debian | 12 | >=5.36.0-7+deb12u1 | Not yet available |
debian/perl | deb | debian | unstable | >=5.38.2-4 | Not yet available |
debian/perl | deb | debian | 11 | >=5.32.1-4+deb11u3 | Not yet available |
debian/perl | deb | debian | 13 | >=5.38.2-4 | Not yet available |
debian/perl | deb | debian | 10 | >=5.28.1-6+deb10u1 | Not yet available |
Severity and metrics
No CVSS data available from this source.
3.9
3.9
3.4
-
-