SUSE-SU-2026:1936-1

Details

Description of the patch:

This update for perl-Text-CSV_XS fixes the following issue

CVE-2026-7111: use-after-free when registered callbacks extend the Perl argument stack may enable type confusion or memory corruption (bsc#1263690).

Affected Packages

perl-Text-CSV_XS

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP4-LTSSSUSE Linux Enterprise High Performance Computing 15 SP5-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP5-LTSSSUSE Linux Enterprise Module for Development Tools 15 SP7

Fixed in:

1.34-150000.3.3.1

References

ADVISORY

https://bugzilla.suse.com/1263690

ADVISORY

https://lists.suse.com/pipermail/sle-updates/2026-May/046547.html

ADVISORY

https://www.suse.com/security/cve/CVE-2026-7111/

WEB

https://www.suse.com/support/security/rating/

ADVISORY

https://www.suse.com/support/update/announcement/2026/suse-su-20261936-1/