February 2024 - perl-devel - Fedora Mailing-Lists

[Bug 2251625] New: CVE-2023-47038 perl:5.36/perl: Write past buffer end via illegal user-defined Unicode property [fedora-all]

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2251625 Bug ID: 2251625 Summary: CVE-2023-47038 perl:5.36/perl: Write past buffer end via illegal user-defined Unicode property [fedora-all] Product: Fedora Version: 38 Status: NEW Component: perl Keywords: Security, SecurityTracking Severity: medium Priority: medium Assignee: jplesnik(a)redhat.com Reporter: ahanwate(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: iarnell(a)gmail.com, jplesnik(a)redhat.com, kasal(a)ucw.cz, mmaslano(a)redhat.com, mspacek(a)redhat.com, perl-devel(a)lists.fedoraproject.org, ppisar(a)redhat.com, psabata(a)redhat.com, rhughes(a)redhat.com, spotrh(a)gmail.com Target Milestone: --- Classification: Fedora More information about this security flaw is available in the following bug: http://bugzilla.redhat.com/show_bug.cgi?id=2249523 Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2251625 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-...

7 minutes

1
4
0 / 0

[Bug 2228398] New: CVE-2023-31486 perl:5.36/perl-HTTP-Tiny: http-tiny: insecure TLS cert default [fedora-all]

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2228398 Bug ID: 2228398 Summary: CVE-2023-31486 perl:5.36/perl-HTTP-Tiny: http-tiny: insecure TLS cert default [fedora-all] Product: Fedora Version: 38 Status: NEW Component: perl-HTTP-Tiny Keywords: Security, SecurityTracking Severity: medium Priority: medium Assignee: jplesnik(a)redhat.com Reporter: trathi(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: jplesnik(a)redhat.com, mspacek(a)redhat.com, perl-devel(a)lists.fedoraproject.org, ppisar(a)redhat.com Target Milestone: --- Classification: Fedora More information about this security flaw is available in the following bug: http://bugzilla.redhat.com/show_bug.cgi?id=2228392 Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2228398 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-...

2 days, 19 hours

1
3
0 / 0

[Bug 2249161] New: perl-Crypt-OpenSSL-AES-0.19 is available

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2249161 Bug ID: 2249161 Summary: perl-Crypt-OpenSSL-AES-0.19 is available Product: Fedora Version: rawhide Status: NEW Component: perl-Crypt-OpenSSL-AES Keywords: FutureFeature, Triaged Assignee: wjhns174(a)hardakers.net Reporter: upstream-release-monitoring(a)fedoraproject.org QA Contact: extras-qa(a)fedoraproject.org CC: perl-devel(a)lists.fedoraproject.org, wjhns174(a)hardakers.net Target Milestone: --- Classification: Fedora Releases retrieved: 0.19 Upstream release that is considered latest: 0.19 Current version/release in rawhide: 0.17-1.fc40 URL: https://metacpan.org/dist/Crypt-OpenSSL-AES/ Please consult the package updates policy before you issue an update to a stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/ More information about the service that created this bug can be found at: https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release... Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream. Based on the information from Anitya: https://release-monitoring.org/project/2743/ To change the monitoring settings for the project, please visit: https://src.fedoraproject.org/rpms/perl-Crypt-OpenSSL-AES -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2249161 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-...

3 days, 8 hours

1
8
0 / 0

[Bug 2184301] New: perl-Syntax-Feature-Loop-1.8.0-18.fc39 FTBFS: t/01_basic.t and 3more test fail

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2184301 Bug ID: 2184301 Summary: perl-Syntax-Feature-Loop-1.8.0-18.fc39 FTBFS: t/01_basic.t and 3more test fail Product: Fedora Version: rawhide URL: https://koschei.fedoraproject.org/package/perl-Syntax- Feature-Loop Status: NEW Component: perl-Syntax-Feature-Loop Assignee: jplesnik(a)redhat.com Reporter: jplesnik(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: jplesnik(a)redhat.com, perl-devel(a)lists.fedoraproject.org Target Milestone: --- Link ID: CPAN 147485 Classification: Fedora Description of problem: Package perl-Syntax-Feature-Loop fails to build from source in Fedora Rawhide. Bareword found where operator expected at t/01_basic.t line 20, near "loop" (Missing semicolon on previous line?) syntax error at t/01_basic.t line 19, near "; last " Global symbol "$s" requires explicit package name (did you forget to declare "my $s"?) at t/01_basic.t line 20. Global symbol "$i" requires explicit package name (did you forget to declare "my $i"?) at t/01_basic.t line 20. Global symbol "$s" requires explicit package name (did you forget to declare "my $s"?) at t/01_basic.t line 20. Global symbol "$s" requires explicit package name (did you forget to declare "my $s"?) at t/01_basic.t line 21. syntax error at t/01_basic.t line 22, near "}" Can't redeclare "my" in "my" at t/01_basic.t line 26, near "my" syntax error at t/01_basic.t line 28, near "last if" syntax error at t/01_basic.t line 36, near "}" syntax error at t/01_basic.t line 38, near "}" t/01_basic.t has too many errors. # Looks like your test exited with 2 before it could output anything. t/01_basic.t ............ Dubious, test returned 2 (wstat 512, 0x200) Failed 4/4 subtests Bareword found where operator expected at t/02_pragma_a.t line 28, near "is" (Missing semicolon on previous line?) syntax error at t/02_pragma_a.t line 27, near "; last" BEGIN not safe after errors--compilation aborted at t/02_pragma_a.t line 31. # Looks like your test exited with 2 before it could output anything. t/02_pragma_a.t ......... Dubious, test returned 2 (wstat 512, 0x200) Failed 6/6 subtests Bareword found where operator expected at t/02_pragma_b.t line 28, near "is" (Missing semicolon on previous line?) syntax error at t/02_pragma_b.t line 27, near "; last" BEGIN not safe after errors--compilation aborted at t/02_pragma_b.t line 31. # Looks like your test exited with 2 before it could output anything. t/02_pragma_b.t ......... Dubious, test returned 2 (wstat 512, 0x200) Failed 6/6 subtests Semicolon seems to be missing at t/03_line_numbers.t line 112. syntax error at t/03_line_numbers.t line 102, near "is" syntax error at t/03_line_numbers.t line 112, near "}" Execution of t/03_line_numbers.t aborted due to compilation errors. # Looks like your test exited with 255 before it could output anything. t/03_line_numbers.t ..... Dubious, test returned 255 (wstat 65280, 0xff00) Failed 5/5 subtests A difference between passing and failing build root is at https://koschei.fedoraproject.org/build/15176950. An update of perl-Lexical-Var from 0.009-31.fc38 to 0.010-1.fc39 is suspicious. Additional info: This package is tracked by Koschei. See: https://koschei.fedoraproject.org/package/perl-Syntax-Feature-Loop -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2184301

5 days, 4 hours

1
13
0 / 0

[Bug 2264428] New: perl-Net-DNS-1.44 is available

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2264428 Bug ID: 2264428 Summary: perl-Net-DNS-1.44 is available Product: Fedora Version: rawhide Status: NEW Component: perl-Net-DNS Keywords: FutureFeature, Triaged Assignee: paul.wouters(a)aiven.io Reporter: upstream-release-monitoring(a)fedoraproject.org QA Contact: extras-qa(a)fedoraproject.org CC: kasal(a)ucw.cz, mspacek(a)redhat.com, paul.wouters(a)aiven.io, perl-devel(a)lists.fedoraproject.org, rstrode(a)redhat.com Target Milestone: --- Classification: Fedora Releases retrieved: 1.44 Upstream release that is considered latest: 1.44 Current version/release in rawhide: 1.43-1.fc40 URL: https://metacpan.org/dist/Net-DNS/ Please consult the package updates policy before you issue an update to a stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/ More information about the service that created this bug can be found at: https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release... Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream. Based on the information from Anitya: https://release-monitoring.org/project/3147/ To change the monitoring settings for the project, please visit: https://src.fedoraproject.org/rpms/perl-Net-DNS -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2264428 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-...

1 week

1
7
0 / 0

[Bug 2263711] New: perl-Business-ISMN-1.204 is available

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2263711 Bug ID: 2263711 Summary: perl-Business-ISMN-1.204 is available Product: Fedora Version: rawhide Status: NEW Component: perl-Business-ISMN Keywords: FutureFeature, Triaged Assignee: cbm(a)m.fsf.org Reporter: upstream-release-monitoring(a)fedoraproject.org QA Contact: extras-qa(a)fedoraproject.org CC: cbm(a)m.fsf.org, perl-devel(a)lists.fedoraproject.org Target Milestone: --- Classification: Fedora Releases retrieved: 1.204 Upstream release that is considered latest: 1.204 Current version/release in rawhide: 1.203-4.fc40 URL: http://search.cpan.org/dist/Business-ISMN Please consult the package updates policy before you issue an update to a stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/ More information about the service that created this bug can be found at: https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release... Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream. Based on the information from Anitya: https://release-monitoring.org/project/5433/ To change the monitoring settings for the project, please visit: https://src.fedoraproject.org/rpms/perl-Business-ISMN -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2263711 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-...

1 week

1
4
0 / 0

[Bug 1821879] New: CVE-2013-7488 perl-Convert-ASN1: allows remote attackers to cause an infinite loop via unexpected input

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1821879 Bug ID: 1821879 Summary: CVE-2013-7488 perl-Convert-ASN1: allows remote attackers to cause an infinite loop via unexpected input Product: Security Response Hardware: All OS: Linux Status: NEW Component: vulnerability Keywords: Security Severity: medium Priority: medium Assignee: security-response-team(a)redhat.com Reporter: gsuckevi(a)redhat.com CC: caillon+fedoraproject(a)gmail.com, caolanm(a)redhat.com, john.j5live(a)gmail.com, jplesnik(a)redhat.com, kasal(a)ucw.cz, perl-devel(a)lists.fedoraproject.org, perl-maint-list(a)redhat.com, ppisar(a)redhat.com, psabata(a)redhat.com, rhughes(a)redhat.com, rstrode(a)redhat.com, sandmann(a)redhat.com Target Milestone: --- Classification: Other perl-Convert-ASN1 (aka the Convert::ASN1 module for Perl) through 0.27 allows remote attackers to cause an infinite loop via unexpected input. Reference: https://github.com/gbarr/perl-Convert-ASN1/issues/14 -- You are receiving this mail because: You are on the CC list for the bug.

1 week, 1 day

1
7
0 / 0

[Bug 2188459] New: CVE-2022-36788 slic3r: Heap-based buffer overflow in the TriangleMesh clone functionality [fedora-all]

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2188459 Bug ID: 2188459 Summary: CVE-2022-36788 slic3r: Heap-based buffer overflow in the TriangleMesh clone functionality [fedora-all] Product: Fedora Version: 38 Status: NEW Component: slic3r Keywords: Security, SecurityTracking Severity: medium Priority: medium Assignee: mhroncok(a)redhat.com Reporter: psampaio(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: mhroncok(a)redhat.com, perl-devel(a)lists.fedoraproject.org Target Milestone: --- Classification: Fedora More information about this security flaw is available in the following bug: http://bugzilla.redhat.com/show_bug.cgi?id=2188458 Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2188459

1 week, 2 days

1
4
0 / 0

[Bug 2262784] New: Upgrade perl-CGI-Simple to 1.281

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2262784 Bug ID: 2262784 Summary: Upgrade perl-CGI-Simple to 1.281 Product: Fedora Version: rawhide URL: https://metacpan.org/release/CGI-Simple Status: NEW Component: perl-CGI-Simple Assignee: spotrh(a)gmail.com Reporter: jplesnik(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: perl-devel(a)lists.fedoraproject.org, spotrh(a)gmail.com Target Milestone: --- Classification: Fedora Latest Fedora delivers 1.280 version. Upstream released 1.281. When you have free time, please upgrade it. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2262784 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-...

1 week, 3 days

1
2
0 / 0

[Bug 2260484] New: Upgrade perl-Email-Valid to 1.204

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2260484 Bug ID: 2260484 Summary: Upgrade perl-Email-Valid to 1.204 Product: Fedora Version: rawhide URL: https://metacpan.org/release/Email-Valid Status: NEW Component: perl-Email-Valid Assignee: spotrh(a)gmail.com Reporter: jplesnik(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: perl-devel(a)lists.fedoraproject.org, spotrh(a)gmail.com Target Milestone: --- Classification: Fedora Latest Fedora delivers 1.203 version. Upstream released 1.204. When you have free time, please upgrade it. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2260484 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-...

1 week, 3 days

1
2
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

perl-devel February 2024