An update for perl-File-Find-Rule is now available for openEuler-22.03-LTS-SP3 Security Advisory openeuler-security@openeuler.org openEuler security committee openEuler-SA-2025-1681 Final 1.0 1.0 2025-06-27 Initial 2025-06-27 2025-06-27 openEuler SA Tool V1.0 2025-06-27 perl-File-Find-Rule security update An update for perl-File-Find-Rule is now available for openEuler-22.03-LTS-SP3 File::Find::Rule is a friendlier interface to File::Find. It allows you to build rules which specify the desired files and directories. Security Fix(es): File::Find::Rule through 0.34 for Perl is vulnerable to Arbitrary Code Execution when `grep()` encounters a crafted filename. A file handle is opened with the 2 argument form of `open()` allowing an attacker controlled filename to provide the MODE parameter to `open()`, turning the filename into a command to be executed. Example: $ mkdir /tmp/poc; echo > "/tmp/poc/|id" $ perl -MFile::Find::Rule \     -E 'File::Find::Rule->grep("foo")->in("/tmp/poc")' uid=1000(user) gid=1000(user) groups=1000(user),100(users)(CVE-2011-10007) An update for perl-File-Find-Rule is now available for openEuler-22.03-LTS-SP3. openEuler Security has rated this update as having a security impact of high. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. High perl-File-Find-Rule https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1681 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2011-10007 https://nvd.nist.gov/vuln/detail/CVE-2011-10007 openEuler-22.03-LTS-SP3 perl-File-Find-Rule-0.34-3.oe2203sp3.noarch.rpm perl-File-Find-Rule-help-0.34-3.oe2203sp3.noarch.rpm perl-File-Find-Rule-0.34-3.oe2203sp3.src.rpm File::Find::Rule through 0.34 for Perl is vulnerable to Arbitrary Code Execution when `grep()` encounters a crafted filename. A file handle is opened with the 2 argument form of `open()` allowing an attacker controlled filename to provide the MODE parameter to `open()`, turning the filename into a command to be executed. Example: $ mkdir /tmp/poc; echo > "/tmp/poc/|id" $ perl -MFile::Find::Rule \     -E 'File::Find::Rule->grep("foo")->in("/tmp/poc")' uid=1000(user) gid=1000(user) groups=1000(user),100(users) 2025-06-27 CVE-2011-10007 openEuler-22.03-LTS-SP3 High 8.8 AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H perl-File-Find-Rule security update 2025-06-27 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1681