INFSA-2025:9517: perl-File-Find-Rule security update
Information about definition
Identificator: INFSA-2025:9517
Type: security
Release date: 2025-07-17 21:24:07 UTC
Information about package
File::Find::Rule is a friendlier interface to File::Find. It allows you to build rules which specify the desired files and directories.
Vulnerabilities description
- CVE-2011-10007
A flaw was found in perl-file-find-rule. The grep() function within File::Find::Rule versions up to 0.34 is vulnerable to arbitrary code execution if provided with a specially crafted filename. This vulnerability allows an attacker to supply a filename that, when opened, executes arbitrary code via the open() function's mode parameter. Consequently, an attacker can achieve remote code execution by providing a malicious filename.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2011-10007
|
no information | 7.3 | no information |
Updated packages