Ubuntu
perl package

Please sync perl 5.14.2-20 (main) from Debian unstable (main)

Bug #1153444 reported by Dmitry Shachnev
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
perl (Ubuntu)
Fix Released
Undecided
Unassigned

Bug Description

https://launchpad.net/debian/+source/perl/5.14.2-20

Changelog entries since current raring version 5.14.2-18:

perl (5.14.2-20) unstable; urgency=low

  * Fix an Encode memory leak that occurred in the UTF-8 encoding.
    (Closes: #702416)
    + upgrade the Broken versions of the separate libencode-perl
      package accordingly.

 -- Niko Tyni <email address hidden> Thu, 07 Mar 2013 19:08:47 +0200

perl (5.14.2-19) unstable; urgency=high

  * [SECURITY] CVE-2013-1667: fix a rehashing DoS opportunity
    against code that uses arbitrary user input as hash keys.
    (Closes: #702296)

 -- Niko Tyni <email address hidden> Tue, 05 Mar 2013 21:38:26 +0200

See original description
Tags: raring
Dmitry Shachnev (mitya57)
description: updated
Revision history for this message
Daniel Holbach (dholbach) wrote :

Looks good AFAICS. Will we have to update libencode-perl? Doing a test-build now.

Revision history for this message
Daniel Holbach (dholbach) wrote :

Looks like Colin already took care of it.

Changed in perl (Ubuntu):
status: New → Fix Released
Revision history for this message
Dmitry Shachnev (mitya57) wrote :

Yes, and he copied libencode-perl as well.

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.