[Bug 2251625] New: CVE-2023-47038 perl:5.36/perl: Write past buffer
end via illegal user-defined Unicode property [fedora-all]
by bugzilla@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=2251625
Bug ID: 2251625
Summary: CVE-2023-47038 perl:5.36/perl: Write past buffer end
via illegal user-defined Unicode property [fedora-all]
Product: Fedora
Version: 38
Status: NEW
Component: perl
Keywords: Security, SecurityTracking
Severity: medium
Priority: medium
Assignee: jplesnik(a)redhat.com
Reporter: ahanwate(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: iarnell(a)gmail.com, jplesnik(a)redhat.com, kasal(a)ucw.cz,
mmaslano(a)redhat.com, mspacek(a)redhat.com,
perl-devel(a)lists.fedoraproject.org, ppisar(a)redhat.com,
psabata(a)redhat.com, rhughes(a)redhat.com,
spotrh(a)gmail.com
Target Milestone: ---
Classification: Fedora
More information about this security flaw is available in the following bug:
http://bugzilla.redhat.com/show_bug.cgi?id=2249523
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2251625
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-...
7 minutes
[Bug 2184301] New: perl-Syntax-Feature-Loop-1.8.0-18.fc39 FTBFS:
t/01_basic.t and 3more test fail
by bugzilla@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=2184301
Bug ID: 2184301
Summary: perl-Syntax-Feature-Loop-1.8.0-18.fc39 FTBFS:
t/01_basic.t and 3more test fail
Product: Fedora
Version: rawhide
URL: https://koschei.fedoraproject.org/package/perl-Syntax-
Feature-Loop
Status: NEW
Component: perl-Syntax-Feature-Loop
Assignee: jplesnik(a)redhat.com
Reporter: jplesnik(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: jplesnik(a)redhat.com,
perl-devel(a)lists.fedoraproject.org
Target Milestone: ---
Link ID: CPAN 147485
Classification: Fedora
Description of problem:
Package perl-Syntax-Feature-Loop fails to build from source in Fedora Rawhide.
Bareword found where operator expected at t/01_basic.t line 20, near "loop"
(Missing semicolon on previous line?)
syntax error at t/01_basic.t line 19, near "; last "
Global symbol "$s" requires explicit package name (did you forget to declare
"my $s"?) at t/01_basic.t line 20.
Global symbol "$i" requires explicit package name (did you forget to declare
"my $i"?) at t/01_basic.t line 20.
Global symbol "$s" requires explicit package name (did you forget to declare
"my $s"?) at t/01_basic.t line 20.
Global symbol "$s" requires explicit package name (did you forget to declare
"my $s"?) at t/01_basic.t line 21.
syntax error at t/01_basic.t line 22, near "}"
Can't redeclare "my" in "my" at t/01_basic.t line 26, near "my"
syntax error at t/01_basic.t line 28, near "last if"
syntax error at t/01_basic.t line 36, near "}"
syntax error at t/01_basic.t line 38, near "}"
t/01_basic.t has too many errors.
# Looks like your test exited with 2 before it could output anything.
t/01_basic.t ............
Dubious, test returned 2 (wstat 512, 0x200)
Failed 4/4 subtests
Bareword found where operator expected at t/02_pragma_a.t line 28, near "is"
(Missing semicolon on previous line?)
syntax error at t/02_pragma_a.t line 27, near "; last"
BEGIN not safe after errors--compilation aborted at t/02_pragma_a.t line 31.
# Looks like your test exited with 2 before it could output anything.
t/02_pragma_a.t .........
Dubious, test returned 2 (wstat 512, 0x200)
Failed 6/6 subtests
Bareword found where operator expected at t/02_pragma_b.t line 28, near "is"
(Missing semicolon on previous line?)
syntax error at t/02_pragma_b.t line 27, near "; last"
BEGIN not safe after errors--compilation aborted at t/02_pragma_b.t line 31.
# Looks like your test exited with 2 before it could output anything.
t/02_pragma_b.t .........
Dubious, test returned 2 (wstat 512, 0x200)
Failed 6/6 subtests
Semicolon seems to be missing at t/03_line_numbers.t line 112.
syntax error at t/03_line_numbers.t line 102, near "is"
syntax error at t/03_line_numbers.t line 112, near "}"
Execution of t/03_line_numbers.t aborted due to compilation errors.
# Looks like your test exited with 255 before it could output anything.
t/03_line_numbers.t .....
Dubious, test returned 255 (wstat 65280, 0xff00)
Failed 5/5 subtests
A difference between passing and failing build root is at
https://koschei.fedoraproject.org/build/15176950. An update of perl-Lexical-Var
from 0.009-31.fc38 to 0.010-1.fc39 is suspicious.
Additional info:
This package is tracked by Koschei. See:
https://koschei.fedoraproject.org/package/perl-Syntax-Feature-Loop
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2184301
5 days, 4 hours
[Bug 1821879] New: CVE-2013-7488 perl-Convert-ASN1: allows remote
attackers to cause an infinite loop via unexpected input
by bugzilla@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=1821879
Bug ID: 1821879
Summary: CVE-2013-7488 perl-Convert-ASN1: allows remote
attackers to cause an infinite loop via unexpected
input
Product: Security Response
Hardware: All
OS: Linux
Status: NEW
Component: vulnerability
Keywords: Security
Severity: medium
Priority: medium
Assignee: security-response-team(a)redhat.com
Reporter: gsuckevi(a)redhat.com
CC: caillon+fedoraproject(a)gmail.com, caolanm(a)redhat.com,
john.j5live(a)gmail.com, jplesnik(a)redhat.com,
kasal(a)ucw.cz, perl-devel(a)lists.fedoraproject.org,
perl-maint-list(a)redhat.com, ppisar(a)redhat.com,
psabata(a)redhat.com, rhughes(a)redhat.com,
rstrode(a)redhat.com, sandmann(a)redhat.com
Target Milestone: ---
Classification: Other
perl-Convert-ASN1 (aka the Convert::ASN1 module for Perl) through 0.27 allows
remote attackers to cause an infinite loop via unexpected input.
Reference:
https://github.com/gbarr/perl-Convert-ASN1/issues/14
--
You are receiving this mail because:
You are on the CC list for the bug.
1 week, 1 day