Front page | perl.perl5.porters |
Postings from March 2013
# New Ticket Created by "advisories" # Please include the string: [perl #117077] # in the subject line of all future correspondence about this issue. # <URL: https://rt.perl.org:443/rt3/Ticket/Display.html?id=117077 > -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Acknowledged. This relates to an active issue being discussed on the oss-security mailing list regarding XML entity resolution. I will file a bug but we need to move fast. Tim > -----Original Message----- > From: Grant McLean [mailto:grant@mclean.net.nz] > Sent: 06 March 2013 19:48 > To: advisories > Cc: grantm@cpan.org; security@perl.org > Subject: Re: Vulnerability in XML::Simple > > Hi Tim > > On Wed, 2013-03-06 at 19:33 +0000, Tim Brown wrote: > > Hi all, > > > > We have a security advisory that affects the XML::Simple module > > distributed on CPAN. It is likely that other Perl XML modules are > > also affected. How would you like to proceed? > > If you've found a problem, then I'd recommend you report it > via the RT bug queue: > > https://rt.cpan.org/Public/Bug/Report.html?Queue=XML-Simple > > Regards > Grant > > > > > -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) iQEcBAEBAgAGBQJRN59sAAoJECflJKyfX3/OgtIH/AyvMeJ1vvP887f989SREZMk m9bPwQxahfIVHKBBtb+yT1QBa+CJrBdZkKljACDGw3qnO6EBNOW8fdK8mMdsYMRL galJXlXJkcrUUQAA64B7lJNpIyWTVnOfl/dEc5QhvhHUHwBS+g1UqtBBEZUS0+BB c9uzYu3qPIHsCh/6KHenOijpTrQ56VJg23ShrJ5iLyhW/rSBla3wrz+3ej0Wy5bq R0l0wKwQkg0viwWtl9AfDt5Ja2DUSdPJr5qzlxDq2QgUWO1wzl/ucxYqHhjxhbYk y5ZjqCAw2Gq7L8xhZCKFKX3H0KmwRpq2RinyAGPpwr6+Nut0GsbscI3LjEevn3A= =WG0+ -----END PGP SIGNATURE----- ############################################################### This email originates from the systems of Portcullis Computer Security Limited, a Private limited company, registered in England in accordance with the Companies Act under number 02763799. The registered office address of Portcullis Computer Security Limited is: The Grange Barn, Pikes End, Pinner, MIDDX, United Kingdom, HA5 2EX. The information in this email is confidential and may be legally privileged. It is intended solely for the addressee. Any opinions expressed are those of the individual and do not represent the opinion of the organisation. Access to this email by persons other than the intended recipient is strictly prohibited. If you are not the intended recipient, any disclosure, copying, distribution or other action taken or omitted to be taken in reliance on it, is prohibited and may be unlawful. When addressed to our clients any opinions or advice contained in this email is subject to the terms and conditions expressed in the applicable Portcullis Computer Security Limited terms of business. ############################################################### ##################################################################################### This e-mail message has been scanned for Viruses and Content and cleared by MailMarshal. #####################################################################################