perl

• Author: kikadf
• Vulnerable: 5.14.1-5
• Unaffected: 5.14.1-6arcturus1

It was discovered that Perl’s Locale::Maketext module incorrectly handled backslashes and fully qualified method names. An attacker could possibly use this flaw to execute arbitrary code when an application used untrusted templates.

CVEs:

• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5526
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6329
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1667