{"id":"DSA-2587-1","summary":"libcgi-pm-perl - HTTP header injection","modified":"2026-03-09T01:21:43.725539Z","published":"2012-12-11T00:00:00Z","upstream":["CVE-2012-5526","DEBIAN-CVE-2012-5526"],"affected":[{"package":{"name":"libcgi-pm-perl","ecosystem":"Debian:6.0","purl":"pkg:deb/debian/libcgi-pm-perl?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.49-1squeeze2"}]}],"versions":["3.49-1squeeze1"],"database_specific":{"source":"https://storage.googleapis.com/debian-osv/dsa-osv/DSA-2587-1.json"}}],"schema_version":"1.7.3"}