{"vulnerability": "CVE-2024-56406", "sightings": [{"uuid": "48ae1948-2de8-4017-80d5-a3cea3806685", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://bsky.app/profile/nixpkgssecuritychanges.gerbet.me/post/3lmpbe3l4wt2x", "content": "", "creation_timestamp": "2025-04-13T14:34:10.227188Z"}, {"uuid": "e1f07463-3365-42cf-afca-99f6db5d63f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://bsky.app/profile/nixpkgssecuritychanges.gerbet.me/post/3lmpbe3snqp2o", "content": "", "creation_timestamp": "2025-04-13T14:34:10.819326Z"}, {"uuid": "34d8bd7e-d4bc-41ee-9fe5-37e8fed76946", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3lmpeiwgnwp2z", "content": "", "creation_timestamp": "2025-04-13T15:30:34.113918Z"}, {"uuid": "4a66d2ce-f95d-4e5b-8494-971197581f48", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3lmpeiwqmiw2z", "content": "", "creation_timestamp": "2025-04-13T15:30:34.863049Z"}, {"uuid": "0d482ca3-b7a5-44e1-91e7-a0ed7773e4bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://infosec.exchange/users/harrysintonen/statuses/114331435266014302", "content": "", "creation_timestamp": "2025-04-13T15:47:34.558885Z"}, {"uuid": "86068e27-5686-48df-99b4-163dfde0b741", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lmpoh3x6fw2q", "content": "", "creation_timestamp": "2025-04-13T18:28:30.015857Z"}, {"uuid": "c3900963-394c-4da1-b1fe-36246b8325af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://bsky.app/profile/bsd.cafe/post/3lmppb34mtqz2", "content": "", "creation_timestamp": "2025-04-13T18:43:11.332952Z"}, {"uuid": "dd0c5c64-919c-4a76-9073-fcd1399996d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3lmpupx3x5n2w", "content": "", "creation_timestamp": "2025-04-13T20:20:49.261159Z"}, {"uuid": "c34eff1a-fa2f-4c37-a0f7-03d6f8fdbd5c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://bsky.app/profile/matoken.inari.opencocon.org.ap.brid.gy/post/3lmpuxnwehb72", "content": "", "creation_timestamp": "2025-04-13T20:25:45.214870Z"}, {"uuid": "57a64d6e-2478-4d76-8d26-e9dbdcec9946", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://bsky.app/profile/nixpkgs-prs-bot.bsky.social/post/3lmqbaxcpx623", "content": "", "creation_timestamp": "2025-04-14T00:05:05.098274Z"}, {"uuid": "b0b6b01f-1884-4cec-891b-ebe93ffcac38", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3lmqil5ansl2q", "content": "", "creation_timestamp": "2025-04-14T02:16:06.437089Z"}, {"uuid": "608e5175-37c9-403b-9e98-3fee2e6c30ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3lmqq4x7xwz2j", "content": "", "creation_timestamp": "2025-04-14T04:31:17.274165Z"}, {"uuid": "9e261e29-a21c-48e5-b9d2-b9afa3850477", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://bsky.app/profile/andranglin.bsky.social/post/3lmrbwbmzek27", "content": "", "creation_timestamp": "2025-04-14T09:49:43.591688Z"}, {"uuid": "d9ea2558-f53e-4369-91e6-721e32a5db43", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/bbcbc485-b88d-4831-b8e9-6e37e7bd9875", "content": "", "creation_timestamp": "2026-01-21T21:18:16.771453Z"}, {"uuid": "85951490-3cf2-47e5-9dc7-31fabebdbdf2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/11563", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-56406\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: A heap buffer overflow vulnerability was discovered in Perl. \n\nWhen there are non-ASCII bytes in the left-hand-side of the `tr` operator, `S_do_trans_invmap` can overflow the destination pointer `d`.\n\n\u00a0 \u00a0$ perl -e '$_ = \"\\x{FF}\" x 1000000; tr/\\xFF/\\x{100}/;' \n\u00a0 \u00a0Segmentation fault (core dumped)\n\nIt is believed that this vulnerability can enable Denial of Service and possibly Code Execution attacks on platforms that lack sufficient defenses.\n\ud83d\udccf Published: 2025-04-13T13:16:09.841Z\n\ud83d\udccf Modified: 2025-04-13T13:16:09.841Z\n\ud83d\udd17 References:\n1. https://github.com/Perl/perl5/commit/87f42aa0e0096e9a346c9672aa3a0bd3bef8c1dd.patch\n2. https://metacpan.org/release/SHAY/perl-5.38.4/changes\n3. https://metacpan.org/release/SHAY/perl-5.40.2/changes", "creation_timestamp": "2025-04-13T13:52:16.000000Z"}, {"uuid": "31e2a2f8-1b05-4b97-8338-d7b89a97b2de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "published-proof-of-concept", "source": "https://t.me/jj_8tl/409", "content": "CVE-2024-56406: Perl 5.34, 5.36, 5.38 and 5.40 are vulnerable to a heap buffer overflow when transliterating non-ASCII bytes https://t.co/M5wHss8z8t\n$ perl -e '$_ = \"\\\\x{FF}\" x 1000000; tr/\\\\xFF/\\\\x{100}/;'\nSegmentation fault\nFirst included in tag v5.33.1, fixed in 5.40.2 and 5.38.4\n\n\u2728 Shared via Awham AutoFeed \u2728\nChannel: @jj_8tl", "creation_timestamp": "2025-04-15T03:57:39.000000Z"}, {"uuid": "49df7d30-a7a8-47ff-aa41-f0e1b1fdf809", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://bsky.app/profile/omo.bsky.social/post/3lmvb4cudwc2m", "content": "", "creation_timestamp": "2025-04-15T23:45:49.577690Z"}, {"uuid": "23b58f9b-8738-4616-af08-1b8a92fa8721", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "MISP/abd2a650-703d-4a2f-9f73-3051c1672e27", "content": "", "creation_timestamp": "2025-08-09T13:26:57.000000Z"}, {"uuid": "2420745e-d80a-4a72-aaa3-3c1d88e2a5f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "published-proof-of-concept", "source": "https://t.me/cvedetector/22810", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-56406 - Perl Heap Buffer Overflow Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-56406 \nPublished : April 13, 2025, 2:15 p.m. | 1\u00a0hour, 16\u00a0minutes ago \nDescription : A heap buffer overflow vulnerability was discovered in Perl.   \n  \nWhen there are non-ASCII bytes in the left-hand-side of the `tr` operator, `S_do_trans_invmap` can overflow the destination pointer `d`.  \n  \n\u00a0 \u00a0$ perl -e '$_ = \"\\x{FF}\" x 1000000; tr/\\xFF/\\x{100}/;'   \n\u00a0 \u00a0Segmentation fault (core dumped)  \n  \nIt is believed that this vulnerability can enable Denial of Service and possibly Code Execution attacks on platforms that lack sufficient defenses. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-13T19:42:43.000000Z"}, {"uuid": "0c9092c9-9b37-4555-8445-fed5028b1858", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://bsky.app/profile/prohoster.bsky.social/post/3lmrgvzi74b2o", "content": "", "creation_timestamp": "2025-04-14T11:19:00.229480Z"}, {"uuid": "a560eb68-ad23-4222-8ca8-a899afdf151f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://bsky.app/profile/bontchev.infosec.exchange.ap.brid.gy/post/3lmrimfkcvmc2", "content": "", "creation_timestamp": "2025-04-14T11:49:36.177725Z"}, {"uuid": "3a894bab-d684-43d1-8a80-11d52ea742b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114336284694376992", "content": "", "creation_timestamp": "2025-04-14T12:20:51.020982Z"}, {"uuid": "230d9938-f9cf-4ec6-ad1e-57796cd168bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://infosec.exchange/users/decio/statuses/114336918715347003", "content": "", "creation_timestamp": "2025-04-14T15:02:05.260884Z"}, {"uuid": "0fd27794-076f-400c-80c8-ab3fb2efbed5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://bsky.app/profile/sushicomabacate.com/post/3lmruv4yqz22h", "content": "", "creation_timestamp": "2025-04-14T15:29:09.884895Z"}, {"uuid": "575dd57e-ea8a-4c49-be67-aef025d4a1a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://bsky.app/profile/sushicomabacate.com/post/3lmruv4ywuk2h", "content": "", "creation_timestamp": "2025-04-14T15:29:10.376317Z"}, {"uuid": "853fa803-20ad-4d63-9a5a-a1a3020bb820", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://bsky.app/profile/sushicomabacate.com/post/3lmruv5ra7k2h", "content": "", "creation_timestamp": "2025-04-14T15:29:10.893656Z"}, {"uuid": "8a70bff2-be2a-4742-9c25-b19570bd5369", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://bsky.app/profile/sushicomabacate.com/post/3lmruv6ejfk2h", "content": "", "creation_timestamp": "2025-04-14T15:29:11.401259Z"}, {"uuid": "28834906-5491-4028-98f2-361a373afb50", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://bsky.app/profile/sushicomabacate.com/post/3lmruvaeahk2h", "content": "", "creation_timestamp": "2025-04-14T15:29:11.924458Z"}, {"uuid": "8b05204a-e94a-4e08-be54-1516d3c6ca7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://bsky.app/profile/sushicomabacate.com/post/3lmruvbof3s2h", "content": "", "creation_timestamp": "2025-04-14T15:29:12.420925Z"}, {"uuid": "1b8808bb-7247-4af5-912c-42e850534f80", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://bsky.app/profile/sushicomabacate.com/post/3lmruvc47i22h", "content": "", "creation_timestamp": "2025-04-14T15:29:12.932217Z"}, {"uuid": "5ecd3d2c-eeb2-4a9b-9b86-8821d0dc7ae6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3lmsyyq45fa2z", "content": "", "creation_timestamp": "2025-04-15T02:15:18.649052Z"}, {"uuid": "9168b39a-d268-40a9-ae83-cad477620f7e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3lmxzutzcrl2w", "content": "", "creation_timestamp": "2025-04-17T02:14:20.657737Z"}, {"uuid": "7afa7192-ab05-4e9d-a2a3-5c3ab6ae8be6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "MISP/abd2a650-703d-4a2f-9f73-3051c1672e27", "content": "", "creation_timestamp": "2025-08-11T18:47:42.000000Z"}, {"uuid": "5714ef8e-ae8e-4b17-a526-635ece5feea2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56406", "type": "seen", "source": "https://t.me/habr_com_news/35855", "content": "\u0412 \u0438\u043d\u0442\u0435\u0440\u043f\u0440\u0435\u0442\u0430\u0442\u043e\u0440\u0430\u0445 Perl 5.40.2 \u0438 5.38.4 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2024-56406, \u043f\u0440\u0438\u0432\u043e\u0434\u044f\u0449\u0430\u044f \u043a \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u0431\u0443\u0444\u0435\u0440\u0430 \u043f\u0440\u0438 \u0442\u0440\u0430\u043d\u0441\u043b\u0438\u0442\u0435\u0440\u0430\u0446\u0438\u0438 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u043e\u0444\u043e\u0440\u043c\u043b\u0435\u043d\u043d\u044b\u0445 \u043d\u0435-ASCII \u0441\u0438\u043c\u0432\u043e\u043b\u043e\u0432 \u043f\u0440\u0438 \u043f\u043e\u043c\u043e\u0449\u0438 \u043e\u043f\u0435\u0440\u0430\u0442\u043e\u0440\u0430 \"tr/../../\".\n\n#\u043a\u0438\u0431\u0435\u0440\u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u044c #\u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u043a\u0430", "creation_timestamp": "2025-04-14T14:15:33.000000Z"}]}