Home
Reading
Searching
Subscribe
Sponsors
Statistics
Posting
Contact
Spam
Lists
Links
About
Hosting
Filtering
Features Download
Marketing
Archives
FAQ
Blog
 
Gmane
From: Errata Announcements for Oracle Linux <el-errata <at> oss.oracle.com>
Subject: ELSA-2013-0685 Moderate: Oracle Linux 5 perl security update
Newsgroups: gmane.linux.oracle.el-errata
Date: Wednesday 27th March 2013 13:47:38 UTC (over 3 years ago)
Oracle Linux Security Advisory ELSA-2013-0685

https://rhn.redhat.com/errata/RHSA-2013-0685.html

The following updated rpms for Oracle Linux 5 have been uploaded to the 
Unbreakable Linux Network:

i386:
perl-5.8.8-40.el5_9.i386.rpm
perl-suidperl-5.8.8-40.el5_9.i386.rpm

x86_64:
perl-5.8.8-40.el5_9.x86_64.rpm
perl-suidperl-5.8.8-40.el5_9.x86_64.rpm

ia64:
perl-5.8.8-40.el5_9.ia64.rpm
perl-suidperl-5.8.8-40.el5_9.ia64.rpm


SRPMS:
http://oss.oracle.com/ol5/SRPMS-updates/perl-5.8.8-40.el5_9.src.rpm



Description of changes:

[4:5.8.8-40]
- Fix CVE-2012-5195 heap buffer overrun at repeatcpy (Resolves:
rhbz#915690)
- Fix CVE-2012-5526 newline injection due to improper CRLF escaping in
   Set-Cookie and P3P headers (Resolves: rhbz#915690)
- Fix CVE-2012-6329 possible arbitrary code execution via Locale::Maketext
   (Resolves: rhbz#915690)
- Fix CVE-2013-1667 DoS in rehashing code (Resolves: rhbz#915690)

[4:5.8.8-39.el5]
- 848156 - Reverts code of perl-5.8.8-U32019.patch
- Resolves: rhbz#848156
 
CD: 3ms