UbuntuUpdates.org

Package "perl"

Name: perl

Description:

Larry Wall's Practical Extraction and Report Language

Latest version: 5.26.0-8ubuntu1.2
Release: artful (17.10)
Level: security
Repository: main
Homepage: http://dev.perl.org/perl5/

Links

Save this URL for the latest version of "perl": https://www.ubuntuupdates.org/perl


Download "perl"


Other versions of "perl" in Artful

Repository Area Version
base main 5.26.0-8ubuntu1
updates main 5.26.0-8ubuntu1.2

Packages in group

Deleted packages are displayed in grey.

libperl-dev libperl5.26 perl-base perl-debug perl-doc
perl-modules-5.26

Changelog

Version: 5.26.0-8ubuntu1.2 2018-06-13 18:06:58 UTC

  perl (5.26.0-8ubuntu1.2) artful-security; urgency=medium

  * SECURITY UPDATE: Directory traversal vulnerability
    - debian/patches/fixes/CVE-2018-12015.patch: fix ing
      cpan/Archive-Tar/lib/Archive/Tar.pm.
    - CVE-2018-12015

 -- <email address hidden> (Leonidas S. Barbosa) Tue, 12 Jun 2018 16:28:18 -0300

Source diff to previous version
CVE-2018-12015 In Perl through 5.26.2, the Archive::Tar module allows remote attackers to bypass a directory-traversal protection mechanism, and overwrite arbitrary

Version: 5.26.0-8ubuntu1.1 2018-04-16 14:07:52 UTC

  perl (5.26.0-8ubuntu1.1) artful-security; urgency=medium

  * SECURITY UPDATE: heap write overflow bug
    - debian/patches/fixes/CVE-2018-6797.patch: restart a node if we change
      to uni rules within the node and encounter a sharp S in regcomp.c.
    - CVE-2018-6797
  * SECURITY UPDATE: heap read overflow bug
    - debian/patches/fixes/CVE-2018-6798-1.patch: check lengths in
      regexec.c, t/lib/warnings/regexec.
    - debian/patches/fixes/CVE-2018-6798-2.patch: account for non-utf8
      target in regexec.c, t/re/re_tests.
    - debian/patches/fixes/CVE-2018-6798-3.patch: no longer warns in
      t/lib/warnings/regexec.
    - debian/patches/fixes/CVE-2018-6798-4.patch: don't dump malformation
      past first NUL in utf8.c.
    - CVE-2018-6798
  * SECURITY UPDATE: heap buffer overflow bug
    - debian/patches/fixes/CVE-2018-6913.patch: fix various space
      calculation issues in pp_pack.c, t/op/pack.t.
    - CVE-2018-6913

 -- Marc Deslauriers <email address hidden> Thu, 05 Apr 2018 08:23:57 -0400

CVE-2018-6797 heap-buffer-overflow (WRITE of size 1) in S_regatom (regcomp.c)
CVE-2018-6798 Heap-buffer-overflow in Perl__byte_dump_string (utf8.c)
CVE-2018-6913 heap-buffer-overflow in S_pack_rec



About   -   Send Feedback to @ubuntu_updates