Mandriva Linux Security Advisory : perl (MDVSA-2014:199)
Low Nessus Plugin ID 78615
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionUpdated perl and perl-Data-Dumper packages fixes security vulnerability :
The Dumper method in Data::Dumper before 2.154, allows context-dependent attackers to cause a denial of service (stack consumption and crash) via an Array-Reference with many nested Array-References, which triggers a large number of recursive calls to the DD_dump function (CVE-2014-4330).
The Data::Dumper module bundled with perl and the perl-Data-Dumper packages has been updated to fix this issue.
SolutionUpdate the affected packages.