Debian Package Tracker

From: Dominic Hargreaves <dom@earth.li>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted perl 5.14.2-21+deb7u4 (all amd64 source) into oldstable
Date: Thu, 28 Jul 2016 14:40:16 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Wed, 27 Jul 2016 14:34:39 +0100
Source: perl
Binary: perl-base libcgi-fast-perl perl-doc perl-modules perl-debug libperl5.14 libperl-dev perl
Architecture: all amd64 source
Version: 5.14.2-21+deb7u4
Distribution: wheezy-security
Urgency: high
Maintainer: Niko Tyni <ntyni@debian.org>
Changed-By: Dominic Hargreaves <dom@earth.li>
Closes: 829578
Description: 
 libcgi-fast-perl - CGI::Fast Perl module
 libperl5.14 - shared Perl library
 libperl-dev - Perl library: development files
 perl-base  - minimal Perl system
 perl-debug - debug-enabled Perl interpreter
 perl-doc   - Perl documentation
 perl       - Larry Wall's Practical Extraction and Report Language
 perl-modules - Core Perl modules
Changes:
 perl (5.14.2-21+deb7u4) wheezy-security; urgency=high
 .
   * [SECURITY] CVE-2016-1238: opportunistic loading of optional
     modules can make many programs unintentionally load code
     from the current working directory (which might be changed to
     another directory without the user realising).
     + allow user configurable removal of "." from @INC in
       /etc/perl/sitecustomize.pl for a transitional period. (See: #588017)
     + backport patches from [perl #127834] to fix known vulnerabilities
       even if the user does not configure "." to be removed from @INC
     + backport patches from [perl #127810] to fix various classes of
       build failures in perl and CPAN modules if "." is removed from
       @INC
   * Make XSLoader skip relative paths not on @INC. (Closes: #829578)
Checksums-Sha1: 
 bee2cb15171c45126bc68101cee6f135c5f377d6 2446 perl_5.14.2-21+deb7u4.dsc
 7746eb147a00e6be55143303b19a89f3ef8010c2 153344 perl_5.14.2-21+deb7u4.debian.tar.xz
 c61b6dc7c0c327711d4615f024c3f1e0b5f89786 77194 libcgi-fast-perl_5.14.2-21+deb7u4_all.deb
 3c91b2645f1e33dfd6a4b886c022442db005081f 8165038 perl-doc_5.14.2-21+deb7u4_all.deb
 da6110899a5a2e65c9658913c781a4da08cd2a7f 3441870 perl-modules_5.14.2-21+deb7u4_all.deb
 c58bf68e24798c87f3ca961ccbe1d41da9057a84 1521768 perl-base_5.14.2-21+deb7u4_amd64.deb
 9db9b265b2bb98770e8cadafd820410451e0df94 8009990 perl-debug_5.14.2-21+deb7u4_amd64.deb
 75ab04116c30c0f03c34b1a5f61741cdc1e6bf51 1182 libperl5.14_5.14.2-21+deb7u4_amd64.deb
 d56d64b4f66e9e0a0c8d1fa65d05dcad16e42351 3327698 libperl-dev_5.14.2-21+deb7u4_amd64.deb
 3582e295688328a7c52fad7a9eddffbc694bc03d 4422050 perl_5.14.2-21+deb7u4_amd64.deb
Checksums-Sha256: 
 4bd0ab0fcc868af8b9a4644742fcc341164596ca61fcdbe5698b9a69fc655a9b 2446 perl_5.14.2-21+deb7u4.dsc
 ee94ab9aa3a5b764f5c26f2eff989f1a8618e9a959f19073b3dd9016a6351a2a 153344 perl_5.14.2-21+deb7u4.debian.tar.xz
 0c565ebaa94107a47faf5ba4ffb7a0578e93f1e293fbe88084615f4c4fb8ab69 77194 libcgi-fast-perl_5.14.2-21+deb7u4_all.deb
 e5d6c795ad354611b9ac4bc3593cafe33159116517cc20e3ca43c70c7aa83a86 8165038 perl-doc_5.14.2-21+deb7u4_all.deb
 3424605887814924c19894ffb064dd988e5b7e7565fa0af8cff3093ea1fa7af1 3441870 perl-modules_5.14.2-21+deb7u4_all.deb
 9723473cb573aa27bff22137ddaea24fc814e0222b9b5c07b039b4071d54d325 1521768 perl-base_5.14.2-21+deb7u4_amd64.deb
 a85260d2b9a74e42c2a8126bd45e4486fdd9679c6643609180fa32e8c80a688a 8009990 perl-debug_5.14.2-21+deb7u4_amd64.deb
 da4d6db5e6976eadfb505fc896983b0a19a6d616717eb5ce3c35614d270d4278 1182 libperl5.14_5.14.2-21+deb7u4_amd64.deb
 18c2dd14ab8a6ac91a4d388f99e3d79f9be93920fda23ae8763447f4dc690ac9 3327698 libperl-dev_5.14.2-21+deb7u4_amd64.deb
 0b4df7c0674420d27f39c4576b8618b0d6c835953dcc4bc6a59d96c01d8990e2 4422050 perl_5.14.2-21+deb7u4_amd64.deb
Files: 
 e54a40c1a435e5c1cef52c71625d7d3c 2446 perl standard perl_5.14.2-21+deb7u4.dsc
 4bc172206f720b6dff68b25ba57cbb6e 153344 perl standard perl_5.14.2-21+deb7u4.debian.tar.xz
 531aa7b35f244ebde5ed92eec9558257 77194 perl optional libcgi-fast-perl_5.14.2-21+deb7u4_all.deb
 f832961d9f19da9a79c5e8706ae071b9 8165038 doc optional perl-doc_5.14.2-21+deb7u4_all.deb
 7980249899c21487bf4e964d9a3331e7 3441870 perl standard perl-modules_5.14.2-21+deb7u4_all.deb
 772895e014769629426722007c5a63be 1521768 perl required perl-base_5.14.2-21+deb7u4_amd64.deb
 8d0ad861f37916d6ea83c12fcf8f2e7f 8009990 debug extra perl-debug_5.14.2-21+deb7u4_amd64.deb
 f2128616a877ea48b5d8b8afccbb20ed 1182 libs optional libperl5.14_5.14.2-21+deb7u4_amd64.deb
 f70aa2bbfad9308abb467bbfd260bd7a 3327698 libdevel optional libperl-dev_5.14.2-21+deb7u4_amd64.deb
 4cc45089ae401d862ebe3804e2dc31ed 4422050 perl standard perl_5.14.2-21+deb7u4_amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=Bx8Y
-----END PGP SIGNATURE-----
News for package perl
