USN-7620-1: File::Find::Rule vulnerability
USN-7620-1: File::Find::Rule vulnerability
Publication date: 7 July 2025
Overview: File::Find::Rule could be made to run programs if it opened a specially crafted file name.
Packages
libfile-find-rule-perl - module to search for files based on rules
Details
Kevin Ryde discovered that File::Find::Rule incorrectly handled certain
file names. An attacker could possibly use this issue to execute arbitrary
code.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu Release Package Version
- 25.04 plucky libfile-find-rule-perl – 0.34-3ubuntu0.25.04.1
- 24.10 oracular libfile-find-rule-perl – 0.34-3ubuntu0.24.10.1
- 24.04 noble libfile-find-rule-perl – 0.34-3ubuntu0.24.04.1
- 22.04 jammy libfile-find-rule-perl – 0.34-1ubuntu0.22.04.1