{"id":"CVE-2010-4777","details":"The Perl_reg_numbered_buff_fetch function in Perl 5.10.0, 5.12.0, 5.14.0, and other versions, when running with debugging enabled, allows context-dependent attackers to cause a denial of service (assertion failure and application exit) via crafted input that is not properly handled when using certain regular expressions, as demonstrated by causing SpamAssassin and OCSInventory to crash.","modified":"2026-04-10T03:41:33.503327Z","published":"2014-02-10T18:15:08Z","related":["openSUSE-SU-2024:10449-1"],"references":[{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=694166"},{"type":"WEB","url":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=628836"},{"type":"WEB","url":"http://forums.ocsinventory-ng.org/viewtopic.php?id=7215"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-updates/2011-05/msg00025.html"},{"type":"WEB","url":"https://listi.jpberlin.de/pipermail/postfixbuch-users/2011-February/055885.html"},{"type":"WEB","url":"https://rt.perl.org/Public/Bug/Display.html?id=76538"}],"schema_version":"1.7.5"}