Sicherheit: Ausführen beliebiger Kommandos in perl-CPAN
Aktuelle Meldungen Distributionen
Name: Ausführen beliebiger Kommandos in perl-CPAN
ID: FEDORA-2017-d2db0e970c
Distribution: Fedora
Plattformen: Fedora 24
Datum: Mi, 18. Januar 2017, 06:48
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1238
Applikationen: perl-CPAN


Name        : perl-CPAN
Product : Fedora 24
Version : 2.11
Release : 350.fc24
URL : http://search.cpan.org/dist/CPAN/
Summary : Query, download and build perl modules from CPAN sites
Description :
The CPAN module automates or at least simplifies the make and install of
perl modules and extensions. It includes some primitive searching
capabilities and knows how to use LWP, HTTP::Tiny, Net::FTP and certain
external download clients to fetch distributions from the net.

Update Information:

This release fixes CVE-2016-1238 vulnerability i the CPAN client, loading
optional modules from current working directory. It also corrects logging fatal
errors through Log::Log4pel back end.

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade perl-CPAN' at the command line.
For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Pro-Linux @Facebook
Neue Nachrichten