Paketname
perl
Datum
2012-01-18
Advisory ID
MDVSA-2012:009
Betroffene Versionen
MES5 i586 , MES5 x86_64

Problembeschreibung

A vulnerability has been found and corrected in perl:

Eval injection in the Digest module before 1.17 for Perl allows
context-dependent attackers to execute arbitrary commands via the
new constructor (CVE-2011-3597).

The updated packages have been patched to correct this issue.

Aktualisierte Pakete

MES5 i586

 fd9783a1f65d16aad7576cd2252b9815  mes5/i586/perl-5.10.0-25.4mdvmes5.2.i586.rpm
 1c5de8eb53d0e0a6b6f13d3ef9593ccd  mes5/i586/perl-base-5.10.0-25.4mdvmes5.2.i586.rpm
 81e1cb7cb1d4d5643dc5f4877d6c9bcf  mes5/i586/perl-devel-5.10.0-25.4mdvmes5.2.i586.rpm
 359d70c0a25a880032c62951ef9f73d5  mes5/i586/perl-doc-5.10.0-25.4mdvmes5.2.i586.rpm
 b6e93b6999b36fc7126a0d8c72dfa89d  mes5/i586/perl-suid-5.10.0-25.4mdvmes5.2.i586.rpm 
 ada6308c9ff77d9f00eb8a9a50161cc2  mes5/SRPMS/perl-5.10.0-25.4mdvmes5.2.src.rpm

MES5 x86_64

 fd5e6046098c0058f89d3450440b990a  mes5/x86_64/perl-5.10.0-25.4mdvmes5.2.x86_64.rpm
 03707243b35433c2a4b457ea28e8c07c  mes5/x86_64/perl-base-5.10.0-25.4mdvmes5.2.x86_64.rpm
 d1848a1544443de9c9d2b483d9873ebf  mes5/x86_64/perl-devel-5.10.0-25.4mdvmes5.2.x86_64.rpm
 c75b1de99042200711b988ab7ec1d3f5  mes5/x86_64/perl-doc-5.10.0-25.4mdvmes5.2.x86_64.rpm
 5bffec684de883588db7c3b6b98fd351  mes5/x86_64/perl-suid-5.10.0-25.4mdvmes5.2.x86_64.rpm 
 ada6308c9ff77d9f00eb8a9a50161cc2  mes5/SRPMS/perl-5.10.0-25.4mdvmes5.2.src.rpm

Referenzen