drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Denial of Service in Perl
Name: |
Denial of Service in Perl |
|
ID: |
FEDORA-2013-3673 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 17 |
|
Datum: |
Mi, 3. April 2013, 08:23 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1667 |
|
Applikationen: |
Perl |
|
Originalnachricht |
Name : perl Product : Fedora 17 Version : 5.14.4 Release : 224.fc17 URL : http://www.perl.org/ Summary : Practical Extraction and Report Language Description : Perl is a high-level programming language with roots in C, sed, awk and shell scripting. Perl is good at handling processes and files, and is especially good at handling text. Perl's hallmarks are practicality and efficiency. While it is used to do a lot of different things, Perl's most common applications are system administration utilities and web programming. A large proportion of the CGI scripts on the web are written in Perl. You need the perl package installed on your system so that your system can handle Perl scripts.
Install this package if you want to program in Perl or enable your system to handle Perl scripts.
------------------------------------------------------------------------------- - Update Information:
Update to Perl 5.14.4 Fix CVE-2013-1667 (DoS in rehashing code). Add NAME section to perl-CPAN manual pages to build whatis database properly. ------------------------------------------------------------------------------- - ChangeLog:
* Thu Mar 7 2013 Jitka Plesnikova <jplesnik@redhat.com> - 4:5.14.4-224 - 5.14.4 bump (see https://metacpan.org/module/DOM/perl-5.14.4/pod/perldelta.pod for release notes). * Tue Mar 5 2013 Petr Pisar <ppisar@redhat.com> - 4:5.14.3-223 - Fix CVE-2013-1667 (DoS in rehashing code) (bug #918008) * Mon Feb 18 2013 Petr Pisar <ppisar@redhat.com> - 4:5.14.3-222 - Add NAME headings to CPAN modules (bug #908113) * Wed Jan 30 2013 Jitka Plesnikova <jplesnik@redhat.com> - 4:5.14.3-221 - Fix RT#82655- Double-free when loading Digest::SHA object * Fri Jan 11 2013 Petr Pisar <ppisar@redhat.com> - 4:5.14.3-220 - Fix CVE-2012-6329 (misparsing of maketext strings) (bug #884354) * Thu Jan 10 2013 Petr Pisar <ppisar@redhat.com> - 4:5.14.3-219 - Do not package App::Cpan(3pm) to perl-Test-Harness (bug #893768) * Mon Nov 26 2012 Petr Pisar <ppisar@redhat.com> - 4:5.14.3-218 - Remove perl-CGI sub-package to favour standalone one (bug #876974) * Wed Oct 17 2012 Jitka Plesnikova <jplesnik@redhat.com> - 4:5.14.3-217 - Do not crash when vivifying $| (bug #865296) * Mon Oct 15 2012 Jitka Plesnikova <jplesnik@redhat.com> - 4:5.14.3-216 - 5.14.3 bump (see https://metacpan.org/module/DOM/perl-5.14.3/pod/perldelta.pod for release notes). * Fri Sep 14 2012 Petr Pisar <ppisar@redhat.com> - 4:5.14.2-215 - Override the Pod::Simple::parse_file to set output to STDOUT by default (bug #826872) * Tue Sep 11 2012 Petr Pisar <ppisar@redhat.com> - 4:5.14.2-214 - Clear $@ before `do' I/O error (bug #834226) - Do not truncate syscall() return value to 32 bits (bug #838551) - Match starting byte in non-UTF-8 mode (bug #801739) - Free hash entries before values on delete (bug #771303) * Wed Sep 5 2012 Petr Pisar <ppisar@redhat.com> - 4:5.14.2-213 - Remove perl-devel dependency from perl-Test-Harness and perl-Test-Simple - Move App::Cpan from perl-Test-Harness to perl-CPAN (bug #854577) * Tue May 29 2012 Jitka Plesnikova <jplesnik@redhat.com> - 4:5.14.2-212 - Fix find2perl to translate ? glob properly (bug #825701) ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #912276 - CVE-2013-1667 perl: DoS in rehashing code https://bugzilla.redhat.com/show_bug.cgi?id=912276 ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update perl' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|