[ubuntu/maverick-security] perl (delayed), perl 5.10.1-12ubuntu2.1 (Accepted)

Ubuntu Installer archive at ubuntu.com
Tue May 3 14:04:13 UTC 2011 

perl (5.10.1-12ubuntu2.1) maverick-security; urgency=low

  * SECURITY UPDATE: multiple intended restriction bypasses in Safe.pm
    - debian/patches/debian/CVE-2010-1168.diff: update Safe.pm to version
      2.29 to fix multiple issues.
    - CVE-2010-1168
    - CVE-2010-1447
  * SECURITY UPDATE: multiple issues in CGI.pm: hardcoded MIME boundary,
    and CRLF injections.
    - debian/patches/fixes/cgi-multiline-header.diff: fix issues with
      patch obtained from (5.10.1-17).
    - CVE-2010-2716
    - CVE-2010-4410
    - CVE-2010-4411
  * SECURITY UPDATE: taint protection bypass via missing taint attributes
    - debian/patches/fixes/CVE-2011-1487.diff: put taint logic at the end
      of pp_* functions.
    - CVE-2011-1487

Date: Thu, 21 Apr 2011 11:24:47 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/maverick/+source/perl/5.10.1-12ubuntu2.1
-------------- next part --------------
Format: 1.8
Date: Thu, 21 Apr 2011 11:24:47 -0400
Source: perl
Binary: perl-base libcgi-fast-perl perl-doc perl-modules perl-debug perl-suid libperl5.10 libperl-dev perl
Architecture: source
Version: 5.10.1-12ubuntu2.1
Distribution: maverick-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 libcgi-fast-perl - CGI::Fast Perl module
 libperl-dev - Perl library: development files
 libperl5.10 - shared Perl library
 perl       - Larry Wall's Practical Extraction and Report Language
 perl-base  - minimal Perl system
 perl-debug - debug-enabled Perl interpreter
 perl-doc   - Perl documentation
 perl-modules - Core Perl modules
 perl-suid  - runs setuid Perl scripts
Changes: 
 perl (5.10.1-12ubuntu2.1) maverick-security; urgency=low
 .
   * SECURITY UPDATE: multiple intended restriction bypasses in Safe.pm
     - debian/patches/debian/CVE-2010-1168.diff: update Safe.pm to version
       2.29 to fix multiple issues.
     - CVE-2010-1168
     - CVE-2010-1447
   * SECURITY UPDATE: multiple issues in CGI.pm: hardcoded MIME boundary,
     and CRLF injections.
     - debian/patches/fixes/cgi-multiline-header.diff: fix issues with
       patch obtained from (5.10.1-17).
     - CVE-2010-2716
     - CVE-2010-4410
     - CVE-2010-4411
   * SECURITY UPDATE: taint protection bypass via missing taint attributes
     - debian/patches/fixes/CVE-2011-1487.diff: put taint logic at the end
       of pp_* functions.
     - CVE-2011-1487
Checksums-Sha1: 
 89537497e5ee9355ab2984b87672d7fc9aafed24 2140 perl_5.10.1-12ubuntu2.1.dsc
 7082932705745069a9cae7f2a8ae841b327714cc 102526 perl_5.10.1-12ubuntu2.1.debian.tar.gz
Checksums-Sha256: 
 abee1eae765ce79bbb53f8040b25c79c13f7bae4baf53faf3ff7bb4feb63305c 2140 perl_5.10.1-12ubuntu2.1.dsc
 5c603ec4908c4a4137f9e90f1cde8f4ac01fc06c83e5f5a99aa9b247d384ff64 102526 perl_5.10.1-12ubuntu2.1.debian.tar.gz
Files: 
 d63d8884d41e815eeb0267529854a65c 2140 perl standard perl_5.10.1-12ubuntu2.1.dsc
 c9460851eac746e83ee5057028bc011a 102526 perl standard perl_5.10.1-12ubuntu2.1.debian.tar.gz
Original-Maintainer: Niko Tyni <ntyni at debian.org>

More information about the Maverick-changes mailing list