Ubuntu

“perl” 5.10.1-8ubuntu2.1 source package in Ubuntu

Changelog

perl (5.10.1-8ubuntu2.1) lucid-security; urgency=low

  * SECURITY UPDATE: multiple intended restriction bypasses in Safe.pm
    - debian/patches/debian/CVE-2010-1168.diff: update Safe.pm to version
      2.29 to fix multiple issues.
    - CVE-2010-1168
    - CVE-2010-1447
  * SECURITY UPDATE: multiple issues in CGI.pm: hardcoded MIME boundary,
    and CRLF injections.
    - debian/patches/fixes/cgi-multiline-header.diff: fix issues with
      patch obtained from (5.10.1-17).
    - CVE-2010-2716
    - CVE-2010-4410
    - CVE-2010-4411
  * SECURITY UPDATE: taint protection bypass via missing taint attributes
    - debian/patches/fixes/CVE-2011-1487.diff: put taint logic at the end
      of pp_* functions.
    - CVE-2011-1487
 -- Marc Deslauriers <email address hidden>   Thu, 21 Apr 2011 13:22:49 -0400

Upload details

Uploaded by:
Marc Deslauriers on 2011-04-22
Uploaded to:
Lucid
Original maintainer:
Ubuntu Developers
Component:
main
Architectures:
any
Section:
perl
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size MD5 Checksum
perl_5.10.1.orig.tar.gz 13.5 MiB b9b2fdb957f50ada62d73f43ee75d044
perl_5.10.1-8ubuntu2.1.diff.gz 115.5 KiB b09bf4c1fc2a79c5d090ded735a12b3f
perl_5.10.1-8ubuntu2.1.dsc 2.1 KiB 37e72e62c1fbd67a7acff4588571fa5f

Binary packages built by this source

libcgi-fast-perl: CGI::Fast Perl module

 CGI::Fast is a subclass of the CGI object created by CGI.pm. It is
 specialized to work well with the Open Market FastCGI standard, which
 greatly speeds up CGI scripts by turning them into persistently running
 server processes. Scripts that perform time-consuming initialization
 processes, such as loading large modules or opening persistent database
 connections, will see large performance improvements.

libperl-dev: Perl library: development files

 Files for developing applications which embed a Perl interpreter and for
 programs compiled with perlcc.

libperl5.10: shared Perl library

 This package is required by programs which embed a Perl interpreter to
 ensure that the correct version of `perl-base' is installed. It
 additionally contains the shared Perl library on architectures where the
 perl binary is linked to libperl.a (currently only i386, for performance
 reasons). In other cases the actual library is in the `perl-base' package.

perl: Larry Wall's Practical Extraction and Report Language

 An interpreted scripting language, known among some as "Unix's Swiss
 Army Chainsaw".
 .
 Perl is optimised for scanning arbitrary text files and system
 administration. It has built-in extended regular expression matching
 and replacement, a data-flow mechanism to improve security with
 setuid scripts and is extensible via modules that can interface to C
 libraries.

perl-base: minimal Perl system

 Perl is a scripting language used in many system scripts and utilities.
 .
 This package provides a Perl interpreter and the small subset of the
 standard run-time library required to perform basic tasks. For a full
 Perl installation, install "perl" (and its dependencies, "perl-modules"
 and "perl-doc").

perl-debug: debug-enabled Perl interpreter

 debugperl provides a debug-enabled version of Perl which can produce
 extensive information about the interpreter as it compiles and executes
 a program (see the -D switch in perlrun(1)).
 .
 Note that this package is primarily of use in debugging *Perl* rather
 than perl programs, which may be traced/debugged using the standard
 perl binary using the -d switch (see perldebug(1)).

perl-doc: Perl documentation

 Perl manual pages, POD documentation and the `perldoc' program. If you are
 writing Perl programs, you almost certainly need this.

perl-modules: Core Perl modules

 Architecture independent Perl modules. These modules are part of Perl and
 required if the `perl' package is installed.

perl-suid: runs setuid Perl scripts

 suidperl is a setuid root helper program which is invoked by perl when
 executing scripts with setuid/gid bits set on systems (like Linux) which
 don't have support setuid script execution natively in the kernel.