develooper Front page | perl.perl5.porters | Postings from September 2017

[perl #132134] CVE-2017-12883 and Perl 5.22

From:
Tony Cook via RT
Date:
September 27, 2017 03:51
Subject:
[perl #132134] CVE-2017-12883 and Perl 5.22
Message ID:
rt-4.0.24-22025-1506484314-1836.132134-15-0@perl.org
On Wed, 20 Sep 2017 17:00:17 -0700, jkeenan wrote:
> On Wed, 20 Sep 2017 15:38:31 GMT, z5t1@z5t1.com wrote:
> > To whom it may concern:
> > 
> > I have backported your patch for CVE-2017-12883 to Perl 5.22
> > (originally, a patch was released for only Perl 5.24 and 5.26). For
> > your
> > convenience, I have attached the patch however it can also be found at
> > http://mirror.cucumberlinux.com/cucumber/cucumber-1.0/source/lang-
> > base/perl/patches/CVE-2017-12883.patch.
> > 
> > Sincerely,
> > 
> > Scott Court
> > BDFL of Cucumber Linux
> 
> I have made this patch available for smoke testing in the following branch:
> 
> smoke-me/jkeenan/132134-cve-2017-12883
> 
> Whether it is applied or not is for discussion.

That looks fine to me.

Tony

---
via perlbug:  queue: perl5 status: open
https://rt.perl.org/Ticket/Display.html?id=132134



nntp.perl.org: Perl Programming lists via nntp and http.
Comments to Ask Bjørn Hansen at ask@perl.org | Group listing | About