Ubuntu

“perl” 5.10.1-12ubuntu2.1 source package in Ubuntu

Changelog

perl (5.10.1-12ubuntu2.1) maverick-security; urgency=low

  * SECURITY UPDATE: multiple intended restriction bypasses in Safe.pm
    - debian/patches/debian/CVE-2010-1168.diff: update Safe.pm to version
      2.29 to fix multiple issues.
    - CVE-2010-1168
    - CVE-2010-1447
  * SECURITY UPDATE: multiple issues in CGI.pm: hardcoded MIME boundary,
    and CRLF injections.
    - debian/patches/fixes/cgi-multiline-header.diff: fix issues with
      patch obtained from (5.10.1-17).
    - CVE-2010-2716
    - CVE-2010-4410
    - CVE-2010-4411
  * SECURITY UPDATE: taint protection bypass via missing taint attributes
    - debian/patches/fixes/CVE-2011-1487.diff: put taint logic at the end
      of pp_* functions.
    - CVE-2011-1487
 -- Marc Deslauriers <email address hidden>   Thu, 21 Apr 2011 11:24:47 -0400

Upload details

Uploaded by:
Marc Deslauriers on 2011-04-22
Uploaded to:
Maverick
Original maintainer:
Ubuntu Developers
Component:
main
Architectures:
any
Section:
perl
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size MD5 Checksum
perl_5.10.1.orig.tar.gz 13.5 MiB b9b2fdb957f50ada62d73f43ee75d044
perl_5.10.1-12ubuntu2.1.debian.tar.gz 100.1 KiB c9460851eac746e83ee5057028bc011a
perl_5.10.1-12ubuntu2.1.dsc 2.1 KiB d63d8884d41e815eeb0267529854a65c

Binary packages built by this source

libcgi-fast-perl: CGI::Fast Perl module

 CGI::Fast is a subclass of the CGI object created by CGI.pm. It is
 specialized to work well with the Open Market FastCGI standard, which
 greatly speeds up CGI scripts by turning them into persistently running
 server processes. Scripts that perform time-consuming initialization
 processes, such as loading large modules or opening persistent database
 connections, will see large performance improvements.

libperl-dev: Perl library: development files

 Files for developing applications which embed a Perl interpreter and for
 programs compiled with perlcc.

libperl5.10: shared Perl library

 This package is required by programs which embed a Perl interpreter to
 ensure that the correct version of `perl-base' is installed. It
 additionally contains the shared Perl library on architectures where the
 perl binary is linked to libperl.a (currently only i386, for performance
 reasons). In other cases the actual library is in the `perl-base' package.

perl: Larry Wall's Practical Extraction and Report Language

 An interpreted scripting language, known among some as "Unix's Swiss
 Army Chainsaw".
 .
 Perl is optimised for scanning arbitrary text files and system
 administration. It has built-in extended regular expression matching
 and replacement, a data-flow mechanism to improve security with
 setuid scripts and is extensible via modules that can interface to C
 libraries.

perl-base: minimal Perl system

 Perl is a scripting language used in many system scripts and utilities.
 .
 This package provides a Perl interpreter and the small subset of the
 standard run-time library required to perform basic tasks. For a full
 Perl installation, install "perl" (and its dependencies, "perl-modules"
 and "perl-doc").

perl-debug: debug-enabled Perl interpreter

 debugperl provides a debug-enabled version of Perl which can produce
 extensive information about the interpreter as it compiles and executes
 a program (see the -D switch in perlrun(1)).
 .
 Note that this package is primarily of use in debugging *Perl* rather
 than perl programs, which may be traced/debugged using the standard
 perl binary using the -d switch (see perldebug(1)).

perl-doc: Perl documentation

 Perl manual pages, POD documentation and the `perldoc' program. If you are
 writing Perl programs, you almost certainly need this.

perl-modules: Core Perl modules

 Architecture independent Perl modules. These modules are part of Perl and
 required if the `perl' package is installed.

perl-suid: runs setuid Perl scripts

 suidperl is a setuid root helper program which is invoked by perl when
 executing scripts with setuid/gid bits set on systems (like Linux) which
 don't have support setuid script execution natively in the kernel.