Change log for perl package in Ubuntu
| 151 → 225 of 247 results | First • Previous • Next • Last |
perl (5.10.1-8ubuntu2.3) lucid-security; urgency=low
* SECURITY UPDATE: algorithmic complexity attack on hash keys
- debian/patches/fixes/CVE-2013-1667.diff: fix hsplit() in hv.c, fix
tests in ext/Hash-Util-FieldHash/t/10_hash.t, t/op/hash.t.
- CVE-2013-1667
-- Marc Deslauriers <email address hidden> Mon, 18 Mar 2013 12:21:44 -0400
Available diffs
perl (5.14.2-20) unstable; urgency=low
* Fix an Encode memory leak that occurred in the UTF-8 encoding.
(Closes: #702416)
+ upgrade the Broken versions of the separate libencode-perl
package accordingly.
-- Niko Tyni <email address hidden> Thu, 07 Mar 2013 19:08:47 +0200
Available diffs
- diff from 5.14.2-18 to 5.14.2-20 (3.9 KiB)
perl (5.14.2-18) unstable; urgency=low
* Fix a squeeze regression with STDIN and signal handlers.
(Closes: #700171)
-- Niko Tyni <email address hidden> Sat, 09 Feb 2013 15:31:33 +0200
Available diffs
- diff from 5.14.2-17 to 5.14.2-18 (1.2 KiB)
perl (5.14.2-17) unstable; urgency=low
* Fix a double-free bug in Digest::SHA. (Closes: #698174)
+ update the Breaks: entry accordingly.
* Avoid wraparound when casting unsigned size_t to signed ssize_t.
(Closes: #698320)
-- Niko Tyni <email address hidden> Fri, 25 Jan 2013 15:22:58 +0200
Available diffs
- diff from 5.14.2-16 to 5.14.2-17 (2.4 KiB)
perl (5.14.2-16) unstable; urgency=medium
* [SECURITY] CVE-2012-5526: CGI.pm improper cookie and p3p
CRLF escaping (Closes: #693420)
* [SECURITY] Fix misparsing of maketext strings which could allow
arbitrary code execution from untrusted maketext templates
(Closes: #695224)
* [SECURITY] add warning to Storable documentation that Storable
documents should not be accepted from untrusted sources
(Closes: #695223)
-- Dominic Hargreaves <email address hidden> Mon, 10 Dec 2012 12:47:14 +0000
Available diffs
- diff from 5.14.2-15 to 5.14.2-16 (4.5 KiB)
perl (5.8.8-12ubuntu0.7) hardy-security; urgency=low
* SECURITY UPDATE: Injection problem in Digest::new
- CVE-2011-3597
- http://rt.cpan.org/Public/Bug/Display.html?id=71390
* SECURITY UPDATE: Heap overflow in "x" operator (LP: #1069034)
- CVE-2012-5195
- http://www.nntp.perl.org/group/perl.perl5.porters/2012/10/msg193886.html
* SECURITY UPDATE: CGI.pm improper cookie and p3p CRLF escaping
- CVE-2012-5526
- http://github.com/markstos/CGI.pm/pull/23.patch
-- Seth Arnold <email address hidden> Tue, 27 Nov 2012 23:15:32 -0800
Available diffs
perl (5.14.2-13ubuntu0.1) quantal-security; urgency=low * SECURITY UPDATE: Heap overflow in "x" operator (LP: #1069034) - CVE-2012-5195 * SECURITY UPDATE: CGI.pm improper cookie and p3p CRLF escaping - CVE-2012-5526 -- Seth Arnold <email address hidden> Mon, 26 Nov 2012 11:28:12 -0800
Available diffs
perl (5.14.2-6ubuntu2.2) precise-security; urgency=low * SECURITY UPDATE: Heap overflow in "x" operator (LP: #1069034) - CVE-2012-5195 * SECURITY UPDATE: CGI.pm improper cookie and p3p CRLF escaping - CVE-2012-5526 -- Seth Arnold <email address hidden> Mon, 26 Nov 2012 11:27:58 -0800
Available diffs
perl (5.12.4-4ubuntu0.1) oneiric-security; urgency=low
* SECURITY UPDATE: Injection problem in Digest::new
- CVE-2011-3597
* SECURITY UPDATE: Heap overflow in "x" operator (LP: #1069034)
- CVE-2012-5195
* SECURITY UPDATE: CGI.pm improper cookie and p3p CRLF escaping
- CVE-2012-5526
-- Seth Arnold <email address hidden> Mon, 26 Nov 2012 11:27:49 -0800
Available diffs
perl (5.10.1-8ubuntu2.2) lucid-security; urgency=low
* SECURITY UPDATE: Injection problem in Digest::new
- CVE-2011-3597
* SECURITY UPDATE: Off-by-one via crafted Unicode string in Unicode.xs
- CVE-2011-2939
* SECURITY UPDATE: Heap overflow in "x" operator (LP: #1069034)
- CVE-2012-5195
* SECURITY UPDATE: CGI.pm improper cookie and p3p CRLF escaping
- CVE-2012-5526
-- Seth Arnold <email address hidden> Mon, 26 Nov 2012 11:27:38 -0800
Available diffs
perl (5.14.2-15) unstable; urgency=low
* Fix CPAN::FirstTime defaults with nonexisting site dirs if a parent
is writable. (Closes: #688842)
* Don't overwrite $Config{lddlflags} or ccdlflags on GNU/kFreeBSD.
(Closes: #689713)
* Fix tainted smart matching. (Closes: #690571)
* Cherry-pick fixes from 5.14.3:
+ /i regexps match correctly with latin1 characters again (Closes: #690975)
+ /i regexps match beyond the start of the string with multi-char folds
again. (Closes: #690976)
+ /[[:lower:]]/i and /[[:upper:]]/i match the opposite cases again
(Closes: #690979)
+ <$fh> no longer hangs or eats memory on a glob copy (Closes: #629363)
+ enforce Any ~~ Object smartmatch precedence (Closes: #691102)
+ update perlcheat.pod to 5.14. (Closes: #691112)
-- Niko Tyni <email address hidden> Sun, 04 Nov 2012 12:37:46 +0200
Available diffs
- diff from 5.14.2-14 to 5.14.2-15 (12.3 KiB)
perl (5.14.2-14) unstable; urgency=high
* [SECURITY] CVE-2012-5195: fix a heap buffer overrun with
the 'x' string repeat operator. (Closes: #689314)
-- Niko Tyni <email address hidden> Wed, 10 Oct 2012 21:17:36 +0300
Available diffs
- diff from 5.14.2-13 to 5.14.2-14 (1.2 KiB)
perl (5.14.2-13) unstable; urgency=low
* Apply patch fixing IPC::Open3 when command is '-' (Closes: #683894)
* Add Breaks/Replaces/Provides for new dual-lived libsocket-perl
(Closes: #679154)
-- Dominic Hargreaves <email address hidden> Thu, 06 Sep 2012 23:24:28 +0100
Available diffs
- diff from 5.14.2-12 to 5.14.2-13 (1.4 KiB)
perl (5.14.2-6ubuntu2.1) precise-proposed; urgency=low
* Add versioned conflict against libxml-sax-perl to ensure it's upgraded
to a version that doesn't use Files::Basename or is removed from the
system. This fixes upgrades from 10.04. (LP: #990256)
-- Stephane Graber <email address hidden> Fri, 10 Aug 2012 15:51:31 -0400
Available diffs
perl (5.14.2-12) unstable; urgency=low
* Re-enable thread tests on kFreeBSD now that libc breakage has been
resolved (Closes: #672152, #677045)
* Update Standards-Version (no changes)
* Add minimal Copyright fields to debian/copyright paragraphs that
were missing them, to fix Lintian warnings about missing required
fields
-- Dominic Hargreaves <email address hidden> Mon, 18 Jun 2012 22:44:56 +0100
Available diffs
- diff from 5.14.2-11 to 5.14.2-12 (6.6 KiB)
perl (5.14.2-11) unstable; urgency=low
[ Dominic Hargreaves ]
* Add patch from Daniel Kahn Gillmor fixing propagation of socket
type information (Closes: #659075)
[ Niko Tyni ]
* Temporarily disable thread tests on kFreeBSD to work around libc breakage.
(See #672152 and #673711)
* Remove empty Copyright lines from debian/copyright to appease
Config::Model.
-- Niko Tyni <email address hidden> Fri, 25 May 2012 10:14:00 +0300
Available diffs
- diff from 5.14.2-10 to 5.14.2-11 (8.9 KiB)
perl (5.14.2-10) unstable; urgency=low
* Properly propagate tainted errors (Closes: #663158)
* Invoke x-terminal-emulator rather than xterm in perl5db.pl
(Closes: #668490)
* Add Conflicts with mono-gac (<< 2.10.8.1-3) to perl-base and
perl-modules (Closes: #665384)
-- Dominic Hargreaves <email address hidden> Mon, 07 May 2012 20:33:52 +0100
Available diffs
- diff from 5.14.2-9 to 5.14.2-10 (2.0 KiB)
perl (5.14.2-6ubuntu2) precise; urgency=low
* Have perl, perl-modules, and perl-base conflict with versions of
mono-gac requiring File::Basename, to ensure a smooth upgrade from lucid.
LP: #948848.
-- Steve Langasek <email address hidden> Fri, 23 Mar 2012 07:59:20 -0700
Available diffs
- diff from 5.14.2-6ubuntu1 to 5.14.2-6ubuntu2 (888 bytes)
perl (5.14.2-9) unstable; urgency=low
[ Dominic Hargreaves ]
* Add Breaks on various packages which had 5.12/5.14 compatibility
bugs fixed since squeeze, to help with partial upgrades
* Add Breaks on ftpmirror for the same reason (Closes: #659799)
[ Niko Tyni ]
* No longer disable the 'pie' build flags: the implementation was
overwriting DEB_BUILD_MAINT_OPTIONS altogether.
* Modify Config_heavy.pl after the build to remove dpkg-buildflags
effects on ccflags and lddlflags; we don't want to force them on
all XS modules at this stage. (See #657853)
* Update the DEP-5 URL in debian/copyright now that it is finally stabilized.
* Make EU::MM pass LD through to recursive Makefile.PL invocations.
(Closes: #660195)
-- Niko Tyni <email address hidden> Sat, 03 Mar 2012 16:23:02 +0200
Available diffs
| Superseded in precise-release |
perl (5.14.2-6ubuntu1) precise; urgency=low
* debian/control: Add doc-base conflict also to perl, perl-modules, and
libperl5.14. Otherwise they can get unpacked before upgrading perl-base
and doc-base and thus still cause symbol lookup errors in the doc-base
trigger. (Closes: #648954, LP: #902553)
-- Martin Pitt <email address hidden> Fri, 16 Dec 2011 12:25:31 +0100
Available diffs
perl (5.14.2-6) unstable; urgency=low
[ Niko Tyni ]
* debian/rules: correctly handle subject line wraps in patch headers.
[ Dominic Hargreaves ]
* Add versioned Conflicts on update-inetd (<< 4.41) (Closes: #649177)
* Conflict on rather than Break doc-base (<< 0.10.3); aptitude
runs doc-base triggers before the new version has been unpacked
* Update Lintian override for perl-module-uses-perl4-libs-without-dep
to reflect new path to CGI.pm
* Disable various tests which fail on GNU/Hurd (see #648623)
-- Dominic Hargreaves <email address hidden> Mon, 28 Nov 2011 19:48:05 +0000
Available diffs
| Superseded in precise-release |
perl (5.14.2-5ubuntu1) precise; urgency=low
* Break older versions of update-inetd to avoid File::Temp and File::Copy
binary-incompatibility issues during upgrades (LP: #862129).
-- Colin Watson <email address hidden> Thu, 24 Nov 2011 15:24:30 +0000
Available diffs
perl (5.14.2-5) unstable; urgency=low
* Update versioned Breaks for dual-lived modules with updates in
5.14.2 (libmodule-corelist-perl, libencode-perl)
* Update versioned Breaks for doc-base to << 0.10.3; this version
improves the resilience of the postinst during a major perl upgrade
(Closes: #648954)
-- Dominic Hargreaves <email address hidden> Thu, 17 Nov 2011 23:29:20 +0000
Available diffs
- diff from 5.14.2-4 to 5.14.2-5 (791 bytes)
perl (5.14.2-4) unstable; urgency=low
* Add Conflicts: libjson-pp-perl (<< 2.27200-2) to perl package
to fix file conflict with dual-lived module (Closes: #648897)
-- Dominic Hargreaves <email address hidden> Tue, 15 Nov 2011 23:36:39 +0000
Available diffs
- diff from 5.14.2-3build1 (in Ubuntu) to 5.14.2-4 (627 bytes)
| Superseded in precise-release |
perl (5.14.2-3build1) precise; urgency=low * Rebuild in the main archive to avoid depending on an experimental libc6. -- Colin Watson <email address hidden> Tue, 15 Nov 2011 13:51:55 +0000
Available diffs
- diff from 5.14.2-3 (in Debian) to 5.14.2-3build1 (334 bytes)
perl (5.14.2-3) unstable; urgency=low * Upload to unstable -- Dominic Hargreaves <email address hidden> Sun, 13 Nov 2011 12:12:26 +0000
perl (5.12.4-6) unstable; urgency=medium
* [SECURITY] CVE-2011-3597: Fix unsafe use of eval in Digest->new();
thanks to Ansgar Burchardt for the notification (Closes: #644108)
Available diffs
perl (5.12.4-4) unstable; urgency=medium
* Fix decode_xs n-byte heap-overflow security bug in Unicode.xs
(Closes: #637376)
-- Dominic Hargreaves <email address hidden> Wed, 10 Aug 2011 19:25:23 +0100
perl (5.12.4-2) unstable; urgency=low
[ Niko Tyni ]
* debian/config.over: Force the multiarch directory /usr/lib/<triplet>
into $Config{libpth} even if doesn't exist yet. This should guarantee
that ExtUtils::Embed works on multiarch enabled system even when
the package isn't built on one. Thanks to Jonathan Nieder.
(Closes: #630399)
+ needs a build dependency on dpkg-dev (>= 1.16.0) for
"dpkg-architecture -qDEB_HOST_MULTIARCH".
* Fix tainting with index() of a constant. (Closes: #291450)
* Break older versions of doc-base to avoid a Storable binary
incompatibility issue in partial upgrades. (Closes: #633076)
* No longer prune -lnsl and -lutil in debian/config.over, this was
obsoleted by a related change in 5.6.1-7 (!)
* Match bzip2 archives in debian/watch.
-- Matthias Klose <email address hidden> Mon, 08 Aug 2011 10:16:23 +0000
Available diffs
- diff from 5.12.4-1ubuntu2 to 5.12.4-2 (55.2 KiB)
| Superseded in oneiric-release |
perl (5.12.4-1ubuntu2) oneiric; urgency=low
* add breaks for doc-base to ensure that we don't run into
the "Byte order is not compatible at ../../lib/Storable.pm"
problem that happens with new perl but old doc-base
(LP: #781076)
-- Michael Vogt <email address hidden> Thu, 07 Jul 2011 09:52:44 +0200
Available diffs
- diff from 5.12.4-1ubuntu1 to 5.12.4-1ubuntu2 (735 bytes)
| Superseded in oneiric-release |
perl (5.12.4-1ubuntu1) oneiric; urgency=low
* Merge with Debian; remaining changes:
- debian/config.over: Set i_libutil='undef', just in case libbsd-dev is
installed at build time.
Available diffs
- diff from 5.12.3-6ubuntu4 to 5.12.4-1ubuntu1 (107.8 KiB)
| Superseded in oneiric-release |
perl (5.12.3-6ubuntu4) oneiric; urgency=low * Revert the last change. * Properly search GCC include directories. -- Matthias Klose <email address hidden> Thu, 05 May 2011 10:57:54 +0200
Available diffs
| Superseded in oneiric-release |
perl (5.12.3-6ubuntu3) oneiric; urgency=low * Build-depend on gcc-multilib (needs the /usr/include/asm symlink). * libperl-dev: Depend on gcc-multilib, where available. -- Matthias Klose <email address hidden> Wed, 04 May 2011 19:04:34 +0200
Available diffs
- diff from 5.12.3-6ubuntu2 to 5.12.3-6ubuntu3 (854 bytes)
| Superseded in oneiric-release |
perl (5.12.3-6ubuntu2) oneiric; urgency=low * Link ODBM_File with -lgdbm_compat. -- Matthias Klose <email address hidden> Wed, 04 May 2011 14:58:47 +0200
Available diffs
- diff from 5.12.3-6ubuntu1 to 5.12.3-6ubuntu2 (683 bytes)
| Superseded in oneiric-release |
perl (5.12.3-6ubuntu1) oneiric; urgency=low
* Merge with Debian; remaining changes:
- debian/config.over: Set i_libutil='undef', just in case libbsd-dev is
installed at build time.
Available diffs
perl (5.10.1-17ubuntu4.1) natty-security; urgency=low
* SECURITY UPDATE: multiple intended restriction bypasses in Safe.pm
- debian/patches/fixes/CVE-2010-1447.diff: update Safe.pm to version
2.29 to fix multiple issues.
- debian/patches/series: disable superseded fixes/safe-upgrade.diff.
- CVE-2010-1447
* SECURITY UPDATE: taint protection bypass via missing taint attributes
- debian/patches/fixes/CVE-2011-1487.diff: put taint logic at the end
of pp_* functions.
- CVE-2011-1487
-- Marc Deslauriers <email address hidden> Tue, 26 Apr 2011 09:32:28 -0400
Available diffs
perl (5.8.8-12ubuntu0.5) hardy-security; urgency=low
* SECURITY UPDATE: multiple intended restriction bypasses in Safe.pm
- debian/patches/74_CVE-2010-1168: update Safe.pm to version 2.29 to
fix multiple issues.
- CVE-2010-1168
- CVE-2010-1447
* SECURITY UPDATE: multiple issues in CGI.pm: hardcoded MIME boundary,
and CRLF injections.
- debian/patches/75_cgi-multiline-header: fix issues with patch
obtained from (5.10.1-17).
- CVE-2010-2716
- CVE-2010-4410
- CVE-2010-4411
-- Marc Deslauriers <email address hidden> Fri, 22 Apr 2011 12:48:43 -0400
Available diffs
perl (5.10.1-12ubuntu2.1) maverick-security; urgency=low
* SECURITY UPDATE: multiple intended restriction bypasses in Safe.pm
- debian/patches/debian/CVE-2010-1168.diff: update Safe.pm to version
2.29 to fix multiple issues.
- CVE-2010-1168
- CVE-2010-1447
* SECURITY UPDATE: multiple issues in CGI.pm: hardcoded MIME boundary,
and CRLF injections.
- debian/patches/fixes/cgi-multiline-header.diff: fix issues with
patch obtained from (5.10.1-17).
- CVE-2010-2716
- CVE-2010-4410
- CVE-2010-4411
* SECURITY UPDATE: taint protection bypass via missing taint attributes
- debian/patches/fixes/CVE-2011-1487.diff: put taint logic at the end
of pp_* functions.
- CVE-2011-1487
-- Marc Deslauriers <email address hidden> Thu, 21 Apr 2011 11:24:47 -0400
Available diffs
perl (5.10.1-8ubuntu2.1) lucid-security; urgency=low
* SECURITY UPDATE: multiple intended restriction bypasses in Safe.pm
- debian/patches/debian/CVE-2010-1168.diff: update Safe.pm to version
2.29 to fix multiple issues.
- CVE-2010-1168
- CVE-2010-1447
* SECURITY UPDATE: multiple issues in CGI.pm: hardcoded MIME boundary,
and CRLF injections.
- debian/patches/fixes/cgi-multiline-header.diff: fix issues with
patch obtained from (5.10.1-17).
- CVE-2010-2716
- CVE-2010-4410
- CVE-2010-4411
* SECURITY UPDATE: taint protection bypass via missing taint attributes
- debian/patches/fixes/CVE-2011-1487.diff: put taint logic at the end
of pp_* functions.
- CVE-2011-1487
-- Marc Deslauriers <email address hidden> Thu, 21 Apr 2011 13:22:49 -0400
Available diffs
perl (5.8.7-10ubuntu1.3) dapper-security; urgency=low
* SECURITY UPDATE: multiple intended restriction bypasses in Safe.pm
- debian/patches/71_CVE-2010-1168: update Safe.pm to version 2.29 to
fix multiple issues.
- CVE-2010-1168
- CVE-2010-1447
* SECURITY UPDATE: multiple issues in CGI.pm: hardcoded MIME boundary,
and CRLF injections.
- debian/patches/72_cgi-multiline-header: fix issues with patch
obtained from (5.10.1-17).
- CVE-2010-2716
- CVE-2010-4410
- CVE-2010-4411
-- Marc Deslauriers <email address hidden> Fri, 22 Apr 2011 13:05:34 -0400
Available diffs
perl (5.10.1-17ubuntu4) natty; urgency=low
* debian/config.debian: pass multiarch paths to the build (if
available) so that we're able to find libraries needed to build.
LP: #739693.
-- Steve Langasek <email address hidden> Wed, 30 Mar 2011 13:44:06 -0700
Available diffs
- diff from 5.10.1-17ubuntu3 to 5.10.1-17ubuntu4 (791 bytes)
| Superseded in natty-release |
perl (5.10.1-17ubuntu3) natty; urgency=low
* debian/config.over: Set i_libutil='undef', just in case libbsd-dev is
installed at build time.
-- Colin Watson <email address hidden> Tue, 15 Feb 2011 15:28:15 +0000
Available diffs
- diff from 5.10.1-17ubuntu2 to 5.10.1-17ubuntu3 (497 bytes)
| Superseded in natty-release |
perl (5.10.1-17ubuntu2) natty; urgency=low
* Backport fix from threads 1.35 to conditionally compile tmps stack
cleanup code, fixing threads tests on ppc64.
-- Colin Watson <email address hidden> Fri, 11 Feb 2011 19:30:53 +0000
Available diffs
| Superseded in natty-release |
perl (5.10.1-17ubuntu1) natty; urgency=low * Merge from debian unstable. Remaining changes: (LP: #704391) - debian/control: Change build dependency from libdb4.7-dev to libdb-dev, to minimize the db versions on the CDs. - debian/patches/fixes/h2ph-gcc-4.5.diff: + Fix h2ph header generation with GCC 4.5. (Closes: #599933)
Available diffs
| Superseded in natty-release |
perl (5.10.1-16ubuntu1) natty; urgency=low
* Resynchronise with Debian. Remaining changes:
- Change build dependency from libdb4.7-dev to libdb-dev, to minimize
the db versions on the CDs.
- Fix h2ph header generation with GCC 4.5.
Available diffs
| Superseded in natty-release |
perl (5.10.1-15ubuntu2) natty; urgency=low
* Apply upstream patch from Robin Barker
(http://perl5.git.perl.org/perl.git/commit/8d66b3f930dc6d88b524d103e304308ae73a46e7)
to fix h2ph header generation with GCC 4.5.
-- Colin Watson <email address hidden> Tue, 12 Oct 2010 15:11:13 +0100
Available diffs
| Superseded in natty-release |
perl (5.10.1-15ubuntu1) natty; urgency=low
* Resynchronise with Debian. Remaining changes:
- Change build dependency from libdb4.7-dev to libdb-dev, to minimize
the db versions on the CDs.
* Drop sparc optimisation change; Ubuntu no longer builds for sparc.
Available diffs
perl (5.10.1-12ubuntu2) maverick; urgency=low
* debian/config.debian: merge fix from Paul Brook to make configure define
PERL_PATCHLEVEL_H_IMPLICIT so that patchlevel.h does not require
git_version; fixes the build with recent GCCs where gcc -E fails on
missing includes; LP: #600951.
-- Loic Minier <email address hidden> Mon, 12 Jul 2010 12:31:10 +0200
Available diffs
- diff from 5.10.1-12ubuntu1 to 5.10.1-12ubuntu2 (676 bytes)
| Superseded in maverick-release |
perl (5.10.1-12ubuntu1) maverick; urgency=low
* Resynchronise with Debian. Remaining changes:
- Change build dependency from libdb4.7-dev to libdb-dev, to minimize
the db versions on the CDs.
- On sparc, build with -O1 instead of -O2. See #438876.
* Drop Breaks against doc-base. We no longer need to upgrade directly
from hardy.
Available diffs
perl (5.10.1-8ubuntu2) lucid; urgency=low
* Make perl-base conflict with older versions of safe-rm to unbreak
maintainer scripts on partial upgrades. (LP: #568670)
-- Andrew Mitchell <email address hidden> Fri, 23 Apr 2010 16:42:52 +1200
Available diffs
- diff from 5.10.1-8ubuntu1 to 5.10.1-8ubuntu2 (554 bytes)
| Superseded in lucid-release |
perl (5.10.1-8ubuntu1) lucid; urgency=low * Merge with Debian testing (lp: #496556), remaining changes: - Add Breaks against doc-base (<< 0.8.16) to fix upgrade issues from hardy. - Change build dependency from libdb4.7-dev to libdb-dev, to minimize the db versions on the CDs. - On sparc, build with -O1 instead of -O2. See #438876.
Available diffs
perl (5.10.0-24ubuntu4) karmic; urgency=low * On sparc, build with -O1 instead of -O2. See #438876. -- Matthias Klose <email address hidden> Tue, 29 Sep 2009 19:51:02 +0200
Available diffs
- diff from 5.10.0-24ubuntu3 to 5.10.0-24ubuntu4 (466 bytes)
| Superseded in karmic-release |
perl (5.10.0-24ubuntu3) karmic; urgency=low * Rebuild to pick up changed optimisations on armel. -- Matthias Klose <email address hidden> Sun, 20 Sep 2009 23:38:02 +0000
Available diffs
- diff from 5.10.0-24ubuntu2 to 5.10.0-24ubuntu3 (321 bytes)
| Superseded in karmic-release |
perl (5.10.0-24ubuntu2) karmic; urgency=low
* debian/control: Change libdb4.6-dev build dependency to libdb-dev, to
build against 4.7 and drop 4.6 from the CDs. (Debian #536443)
-- Martin Pitt <email address hidden> Tue, 21 Jul 2009 09:23:52 +0200
Available diffs
- diff from 5.10.0-24ubuntu1 to 5.10.0-24ubuntu2 (631 bytes)
| Superseded in karmic-release |
perl (5.10.0-24ubuntu1) karmic; urgency=low * Merge from debian unstable, remaining changes: LP: #398701 - add Breaks against doc-base (<< 0.8.16) to fix upgrade issues from hardy.
Available diffs
perl (5.10.0-11.1ubuntu2.3) intrepid-security; urgency=low
* SECURITY UPDATE: denial of service via heap-based overflow
- debian/patches/37_fix_compress-raw-zlib-cve-2009-1391: Add an extra
byte for NUL termination.
- CVE-2009-1391
* Apply harmless missing part of 90_archive_tar_fix_symlink_unpack patch
(regression tests)
-- Marc Deslauriers <email address hidden> Fri, 26 Jun 2009 10:37:17 -0400
Available diffs
perl (5.10.0-19ubuntu1.1) jaunty-security; urgency=low
* SECURITY UPDATE: denial of service via heap-based overflow
- debian/patches/40_fix_compress-raw-zlib-cve-2009-1391: Add an extra
byte for NUL termination.
- CVE-2009-1391
-- Marc Deslauriers <email address hidden> Fri, 26 Jun 2009 08:33:34 -0400
Available diffs
| Superseded in karmic-release |
perl (5.10.0-23ubuntu1) karmic; urgency=low
* Merge from Debian unstable, remaining changes:
- add Breaks against doc-base (<< 0.8.16) to fix upgrade issues from
hardy.
Available diffs
| Superseded in karmic-release |
perl (5.10.0-22ubuntu1) karmic; urgency=low
* Merge from Debian unstable, remaining changes:
- add Breaks against doc-base (<< 0.8.16) to fix upgrade issues from
hardy.
* Dropped changes:
- Ignore test results on hppa (thread tests fail).
Available diffs
- diff from 5.10.0-19ubuntu1 to 5.10.0-22ubuntu1 (135.3 KiB)
perl (5.8.8-12ubuntu0.4) hardy-security; urgency=low
* 10_fix_h2ph_include_quote: handle system headers with quotes,
thanks to Niko Tyni (LP: #315991).
* debian/rules: verify required .ph files during build.
-- Kees Cook <email address hidden> Tue, 13 Jan 2009 17:20:54 -0800
Available diffs
perl (5.10.0-19ubuntu1) jaunty; urgency=low
* Merge with Debian; remaining changes:
- Ignore test results on hppa (thread tests fail).
Available diffs
perl (5.10.0-11.1ubuntu2.2) intrepid-security; urgency=low
* SECURITY UPDATE: rmtree race could create setuid binaries (CVE-2008-5302).
- debian/patches/35_fix_file_path_rmtree_setuid: upstream patch
thanks to Niko Tyni.
- debian/patches/36_fix_file_temp_cleanup: handle rmtree on tempdirs,
thanks to Niko Tyni.
* SECURITY UPDATE: Archive::Tar would follow symlinks when unpacking
(CVE-2007-4829)
- debian/patches/99_archive_tar_fix_symlink_unpack: backported upstream
patches.
-- Kees Cook <email address hidden> Mon, 22 Dec 2008 14:25:10 -0800
Available diffs
perl (5.8.8-12ubuntu0.3) hardy-security; urgency=low
* SECURITY UPDATE: race condition in File::Path::rmtree could allow
arbitrary file removal and setuid file creation.
- 17_fix_file_path: upstream fixes, thanks to Niko Tyni.
- 17_fix_file_path_chdir: fix regressions in rmtree symantics.
- CVE-2008-5302 CVE-2008-5303
* SECURITY UPDATE: crash on 64bit via crafted utf8 encodings.
- 48_utf8_heap_overflow: upstream fixes, thanks to Niko Tyni and
Florian Weimer.
- CVE-2008-1927
-- Kees Cook <email address hidden> Fri, 05 Dec 2008 14:19:35 -0800
Available diffs
perl (5.8.8-7ubuntu3.4) gutsy-security; urgency=low
* SECURITY UPDATE: race condition in File::Path::rmtree could allow
arbitrary file removal and setuid file creation.
- 17_fix_file_path: upstream fixes, thanks to Niko Tyni.
- 17_fix_file_path_chdir: fix regressions in rmtree symantics.
- CVE-2008-5302 CVE-2008-5303
* SECURITY UPDATE: crash on 64bit via crafted utf8 encodings.
- 48_utf8_heap_overflow: upstream fixes, thanks to Niko Tyni and
Florian Weimer.
- CVE-2008-1927
-- Kees Cook <email address hidden> Fri, 05 Dec 2008 14:17:28 -0800
Available diffs
| Superseded in jaunty-release |
perl (5.10.0-18ubuntu1) jaunty; urgency=low
* Merge with Debian; remaining changes:
- Ignore test results on hppa (thread tests fail).
Available diffs
| Superseded in jaunty-release |
perl (5.10.0-17ubuntu3) jaunty; urgency=low * Ignore test results on hppa for perl-static as well (thread tests fail). -- Matthias Klose <email address hidden> Fri, 12 Dec 2008 21:41:40 +0100
Available diffs
- diff from 5.10.0-17ubuntu2 to 5.10.0-17ubuntu3 (468 bytes)
| Superseded in jaunty-release |
perl (5.10.0-17ubuntu2) jaunty; urgency=low * Ignore test results on hppa (thread tests fail). -- Matthias Klose <email address hidden> Fri, 12 Dec 2008 18:30:33 +0000
Available diffs
- diff from 5.10.0-17ubuntu1 to 5.10.0-17ubuntu2 (640 bytes)
perl (5.8.7-10ubuntu1.2) dapper-security; urgency=low
* SECURITY UPDATE: crash on 64bit via crafted utf8 encodings.
- 48_utf8_heap_overflow: upstream fixes, thanks to Marcela Maslanova.
- CVE-2008-1927
-- Kees Cook <email address hidden> Thu, 04 Dec 2008 13:30:03 -0800
Available diffs
| Superseded in jaunty-release |
perl (5.10.0-17ubuntu1) jaunty; urgency=low
* Merge from debian unstable, remaining changes:
- Drop perl-doc to Suggests.
- Add Breaks against doc-base (<< 0.8.16) to fix upgrade
issue from hardy->intrepid (LP: #243830)
Available diffs
perl (5.10.0-11.1ubuntu2) intrepid; urgency=low
* debian/control:
- add Breaks against doc-base (<< 0.8.16) to fix upgrade
issue from hardy->intrepid (LP: #243830)
-- Michael Vogt <email address hidden> Wed, 23 Jul 2008 22:06:34 +0200
Available diffs
| Superseded in intrepid-release |
perl (5.10.0-11.1ubuntu1) intrepid; urgency=low
* Resynchronise with Debian. Remaining changes:
- Drop perl-doc to Suggests.
Available diffs
- diff from 5.10.0-11ubuntu1 to 5.10.0-11.1ubuntu1 (843 bytes)
| Superseded in intrepid-release |
perl (5.10.0-11ubuntu1) intrepid; urgency=low
* Drop perl-doc to Suggests; apt automatically installs Recommends now,
and perl-doc is too big for Ubuntu CD images.
-- Colin Watson <email address hidden> Wed, 02 Jul 2008 15:08:45 +0100
Available diffs
- diff from 5.10.0-11 to 5.10.0-11ubuntu1 (975 bytes)
perl (5.10.0-11) unstable; urgency=high
* [SECURITY] File::Path::rmtree() no longer makes symlink targets
world-writable. Patch by Ben Hutchings. (Closes: #487319)
-- Ubuntu Archive Auto-Sync <email address hidden> Mon, 23 Jun 2008 13:55:52 +0100
Available diffs
- diff from 5.10.0-10 to 5.10.0-11 (964 bytes)
perl (5.10.0-10) unstable; urgency=low
* Integrate NMU, thanks Bastian.
* Make h2ph allow the quote mark delimiter also for those #include directives
chased with "h2ph -a". (Closes: #479762)
* Adjust manual page sections in Module::Build::Base for the Debian Perl
policy. (Closes: #479460)
* Disable the "v-string in use/require is non-portable" warning again.
(Closes: #479863)
-- Ubuntu Archive Auto-Sync <email address hidden> Fri, 09 May 2008 09:36:07 +0100
| Superseded in intrepid-release |
perl (5.10.0-9.1) unstable; urgency=low * Non-maintainer upload. * Move Hash::Util into perl-base. (closes: #479202) -- Ubuntu Archive Auto-Sync <email address hidden> Wed, 07 May 2008 11:14:25 +0100
| 151 → 225 of 247 results | First • Previous • Next • Last |
