Accepted perl 5.8.4-5ubuntu1 (source)
Martin Pitt
martin.pitt at ubuntu.com
Wed Feb 2 05:20:03 CST 2005
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Wed, 2 Feb 2005 12:14:22 +0100
Source: perl
Binary: perl-base libcgi-fast-perl libperl-dev perl-debug perl-modules perl libperl5.8 perl-suid perl-doc
Architecture: source
Version: 5.8.4-5ubuntu1
Distribution: hoary
Urgency: low
Maintainer: Brendan O'Dea <bod at debian.org>
Changed-By: Martin Pitt <martin.pitt at ubuntu.com>
Description:
libcgi-fast-perl - CGI::Fast Perl module
libperl-dev - Perl library: development files
libperl5.8 - Shared Perl library
perl - Larry Wall's Practical Extraction and Report Language
perl-base - The Pathologically Eclectic Rubbish Lister
perl-debug - Debug-enabled Perl interpreter
perl-doc - Perl documentation
perl-modules - Core Perl modules
perl-suid - Runs setuid Perl scripts
Changes:
perl (5.8.4-5ubuntu1) hoary; urgency=low
.
* SECURITY UPDATE: Fix buffer overflow and arbitrary file overwrite
* perlio.c: Ignore PERLIO_DEBUG environment variable if real uid/gid !=
effective uid/gid. This prevents overwriting arbitrary files with root
privileges when calling a suid-perl script with PERLIO_DEBUG set.
(CAN-2005-0155)
* perlio.c: Avoid overflowing the "buffer" variable when running a Perl
script with a very long path with PERLIO_DEBUG set.
(CAN-2005-0156)
Files:
b0d86ce64a2572371498b8c716ec45be 740 perl standard perl_5.8.4-5ubuntu1.dsc
e8bf30987b2828e3398d94b0fcbf4c99 77732 perl standard perl_5.8.4-5ubuntu1.diff.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)
iD8DBQFCALb+DecnbV4Fd/IRAhItAKC6Ij3bTDwLFaHfnysg0ayORA8NpACgyEtP
T1eyHBav5ZnoxJVXuiisv1U=
=ufiM
-----END PGP SIGNATURE-----
Accepted:
perl_5.8.4-5ubuntu1.diff.gz
to pool/main/p/perl/perl_5.8.4-5ubuntu1.diff.gz
perl_5.8.4-5ubuntu1.dsc
to pool/main/p/perl/perl_5.8.4-5ubuntu1.dsc
More information about the hoary-changes
mailing list