[SECURITY] Fedora 12 Update: perl-5.10.0-91.fc12

updates at fedoraproject.org updates at fedoraproject.org
Fri Aug 13 21:12:30 UTC 2010 

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-11340
2010-07-23 01:56:12
--------------------------------------------------------------------------------

Name        : perl
Product     : Fedora 12
Version     : 5.10.0
Release     : 91.fc12
URL         : http://www.perl.org/
Summary     : Practical Extraction and Report Language
Description :
Perl is a high-level programming language with roots in C, sed, awk
and shell scripting.  Perl is good at handling processes and files,
and is especially good at handling text.  Perl's hallmarks are
practicality and efficiency.  While it is used to do a lot of
different things, Perl's most common applications are system
administration utilities and web programming.  A large proportion of
the CGI scripts on the web are written in Perl.  You need the perl
package installed on your system so that your system can handle Perl
scripts.

Install this package if you want to program in Perl or enable your
system to handle Perl scripts.

--------------------------------------------------------------------------------
ChangeLog:

* Wed Jul 21 2010 Marcela Mašláňová <mmaslano at redhat.com> - 4:5.10.0-91
- CVE-2010-1168 perl Safe: Intended restriction bypass via object references
- CVE-2010-1447 perl: Safe restriction bypass when reference to subroutine in
 compartment is called from outside
- 576824 RT#73814 - unpack() didn't handle scalar context correctly
- Resolves: rhbz#588269, rhbz#576508
* Fri Jul  9 2010 Petr Pisar <ppisar at redhat.com> - 4:5.10.0-90
- Add Digest::SHA requirement to perl-CPAN and perl-CPANPLUS (bug #612563)
* Wed Jul  7 2010 Petr Pisar <ppisar at redhat.com> - 4:5.10.0-89
- Fix perl-5.10.0-Encode-err.patch patch to be applicable
- Fix incorrect return code on failed extraction by upgrading Archive::Tar to
  1.62 (bug #607687)
* Wed Mar 17 2010 Marcela Mašláňová <mmaslano at redhat.com> - 4:5.10.0-88
- rebuild, e.g. Patch62 is missing in koji build
* Tue Dec  1 2009 Stepan Kasal <skasal at redhat.com> - 4:5.10.0-87
- fix patch-update-Compress-Raw-Zlib.patch (did not patch Zlib.pm)
- update Compress::Raw::Zlib to 2.023
- update IO::Compress::Base, and IO::Compress::Zlib to 2.015 (#542645)
* Mon Nov 30 2009 Marcela Mašláňová <mmaslano at redhat.com> - 4:5.10.0-86
- 542645 update IO-Compress-Base
* Tue Nov 24 2009 Stepan Kasal <skasal at redhat.com> - 4:5.10.0-85
- back out perl-5.10.0-spamassassin.patch (#528572)
* Thu Oct  1 2009 Chris Weyl <cweyl at alumni.drew.edu> - 4:5.10.0-84
- add /perl(UNIVERSAL)/d; /perl(DB)/d to perl_default_filter auto-provides
  filtering
* Thu Oct  1 2009 Stepan Kasal <skasal at redhat.com> - 4:5.10.0-83
- update Storable to 2.21
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #576508 - CVE-2010-1168 perl Safe: Intended restriction bypass via object references
        https://bugzilla.redhat.com/show_bug.cgi?id=576508
  [ 2 ] Bug #588269 - CVE-2010-1447 perl: Safe restriction bypass when reference to subroutine in compartment is called from outside
        https://bugzilla.redhat.com/show_bug.cgi?id=588269
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update perl' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

More information about the package-announce mailing list