--------------------------------------------------------------------------------Fedora Update Notification
FEDORA-2008-5739
2008-06-26 02:42:21
--------------------------------------------------------------------------------Name        : perl
Product     : Fedora 9
Version     : 5.10.0
Release     : 27.fc9
URL         : https://www.perl.org/
Summary     : The Perl programming language
Description :
Perl is a high-level programming language with roots in C, sed, awk
and shell scripting.  Perl is good at handling processes and files,
and is especially good at handling text.  Perl's hallmarks are
practicality and efficiency.  While it is used to do a lot of
different things, Perl's most common applications are system
administration utilities and web programming.  A large proportion of
the CGI scripts on the web are written in Perl.  You need the perl
package installed on your system so that your system can handle Perl
scripts.

Install this package if you want to program in Perl or enable your
system to handle Perl scripts.

--------------------------------------------------------------------------------Update Information:

CVE-2008-2827 perl: insecure use of chmod in rmtree
--------------------------------------------------------------------------------ChangeLog:

* Tue Jun 24 2008 Marcela Maslanova  4:5.10.0-27
- CVE-2008-2827 perl: insecure use of chmod in rmtree
* Thu Jun 12 2008 Stepan Kasal  4:5.10.0-26
- make config parameter list consistent for 32bit and 64bit platforms,
  add config option -Dinc_version_list=none (#448735)
- use perl_archname consistently
- set siteprefix to prefix/local
* Wed Jun 11 2008 Marcela Maslanova  4:5.10.0-25
- 447371 wrong access permission rt49003
* Mon May 26 2008 Marcela Maslanova  4:5.10.0-24
- 448392 upstream fix for assertion
* Thu May 22 2008 Tom "spot" Callaway  4:5.10.0-23
- sparc64 breaks with the rpath hack patch applied
* Mon May 19 2008 Marcela Maslanova  4:5.10.0-22
- 447142 upgrade CGI to 3.37
* Sat May 17 2008 Tom "spot" Callaway  4:5.10.0-21
- sparc64 fails two tests under mysterious circumstances. we need to get the
  rest of the tree moving, so we temporarily disable the tests on that arch.
--------------------------------------------------------------------------------References:

  [ 1 ] Bug #452635 - CVE-2008-2827 perl: insecure use of chmod in rmtree
        https://bugzilla.redhat.com/show_bug.cgi?id=452635
--------------------------------------------------------------------------------This update can be installed with the "yum" update program.  Use 
su -c 'yum update perl' at the command line.
For more information, refer to "Managing Software with yum",
available at .

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
--------------------------------------------------------------------------------_______________________________________________
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-package-announce

Fedora 9 Update: perl-5.10.0-27.fc9

June 26, 2008
CVE-2008-2827 perl: insecure use of chmod in rmtree

Summary

Perl is a high-level programming language with roots in C, sed, awk

and shell scripting. Perl is good at handling processes and files,

and is especially good at handling text. Perl's hallmarks are

practicality and efficiency. While it is used to do a lot of

different things, Perl's most common applications are system

administration utilities and web programming. A large proportion of

the CGI scripts on the web are written in Perl. You need the perl

package installed on your system so that your system can handle Perl

scripts.

Install this package if you want to program in Perl or enable your

system to handle Perl scripts.

CVE-2008-2827 perl: insecure use of chmod in rmtree

* Tue Jun 24 2008 Marcela Maslanova 4:5.10.0-27

- CVE-2008-2827 perl: insecure use of chmod in rmtree

* Thu Jun 12 2008 Stepan Kasal 4:5.10.0-26

- make config parameter list consistent for 32bit and 64bit platforms,

add config option -Dinc_version_list=none (#448735)

- use perl_archname consistently

- set siteprefix to prefix/local

* Wed Jun 11 2008 Marcela Maslanova 4:5.10.0-25

- 447371 wrong access permission rt49003

* Mon May 26 2008 Marcela Maslanova 4:5.10.0-24

- 448392 upstream fix for assertion

* Thu May 22 2008 Tom "spot" Callaway 4:5.10.0-23

- sparc64 breaks with the rpath hack patch applied

* Mon May 19 2008 Marcela Maslanova 4:5.10.0-22

- 447142 upgrade CGI to 3.37

* Sat May 17 2008 Tom "spot" Callaway 4:5.10.0-21

- sparc64 fails two tests under mysterious circumstances. we need to get the

rest of the tree moving, so we temporarily disable the tests on that arch.

[ 1 ] Bug #452635 - CVE-2008-2827 perl: insecure use of chmod in rmtree

https://bugzilla.redhat.com/show_bug.cgi?id=452635

su -c 'yum update perl' at the command line.

For more information, refer to "Managing Software with yum",

available at .

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

Fedora-package-announce mailing list

Fedora-package-announce@redhat.com

http://www.redhat.com/mailman/listinfo/fedora-package-announce

FEDORA-2008-5739 2008-06-26 02:42:21 Product : Fedora 9 Version : 5.10.0 Release : 27.fc9 URL : https://www.perl.org/ Summary : The Perl programming language Description : Perl is a high-level programming language with roots in C, sed, awk and shell scripting. Perl is good at handling processes and files, and is especially good at handling text. Perl's hallmarks are practicality and efficiency. While it is used to do a lot of different things, Perl's most common applications are system administration utilities and web programming. A large proportion of the CGI scripts on the web are written in Perl. You need the perl package installed on your system so that your system can handle Perl scripts. Install this package if you want to program in Perl or enable your system to handle Perl scripts. CVE-2008-2827 perl: insecure use of chmod in rmtree * Tue Jun 24 2008 Marcela Maslanova 4:5.10.0-27 - CVE-2008-2827 perl: insecure use of chmod in rmtree * Thu Jun 12 2008 Stepan Kasal 4:5.10.0-26 - make config parameter list consistent for 32bit and 64bit platforms, add config option -Dinc_version_list=none (#448735) - use perl_archname consistently - set siteprefix to prefix/local * Wed Jun 11 2008 Marcela Maslanova 4:5.10.0-25 - 447371 wrong access permission rt49003 * Mon May 26 2008 Marcela Maslanova 4:5.10.0-24 - 448392 upstream fix for assertion * Thu May 22 2008 Tom "spot" Callaway 4:5.10.0-23 - sparc64 breaks with the rpath hack patch applied * Mon May 19 2008 Marcela Maslanova 4:5.10.0-22 - 447142 upgrade CGI to 3.37 * Sat May 17 2008 Tom "spot" Callaway 4:5.10.0-21 - sparc64 fails two tests under mysterious circumstances. we need to get the rest of the tree moving, so we temporarily disable the tests on that arch. [ 1 ] Bug #452635 - CVE-2008-2827 perl: insecure use of chmod in rmtree https://bugzilla.redhat.com/show_bug.cgi?id=452635 su -c 'yum update perl' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ Fedora-package-announce mailing list Fedora-package-announce@redhat.com http://www.redhat.com/mailman/listinfo/fedora-package-announce

Change Log

References

Update Instructions

Severity
Product : Fedora 9
Version : 5.10.0
Release : 27.fc9
URL : https://www.perl.org/
Summary : The Perl programming language

Related News

28.Lock Globe Esm H320
1 - 2 min read
A resurgence of cyberattacks targeting Linux systems in Asian campaigns through the utilization of the Pupy Remote Access Trojan (RAT) has been
27.Tablet Connections Blocks Lock Esm H320
2 - 4 min read
Canonical has recently announced the Beta release of Ubuntu Linux 24.04 LTS , codenamed "Noble Numbat." This release aims to continue Ubuntu's
21.Globe RadiatingCode Esm H320
2 - 3 min read
The open-source movement has come a long way, from its origins in the 1960s and 1970s to becoming an integral part of organizations worldwide.
13.Lock StylizedMotherboard Esm H320
2 - 3 min read
The Rust-based Edera project demonstrates a unique approach to container security that addresses cloud-native computing challenges. Let's examine
8.Locks HexConnections CodeGlobe Esm H320
2 - 3 min read
Canonical has launched Ubuntu Pro for Devices , a comprehensive offering emphasizing security and compliance for IoT device deployments. This
2.Motherboard Esm H320
2 - 3 min read
The recently uncovered "Native Branch History Injection (BHI)" exploit against the Linux kernel marks a significant milestone in the ongoing battle
1.Penguin Landscape Esm H320
1 - 2 min read
There are compelling arguments in favor of Linux over Windows for desktop usage. Let's explore some advantages of choosing Linux over Windows for
4.Lock AbstractDigital Esm H320
2 - 3 min read
Canonical , the company behind Ubuntu , has introduced Netplan 1.0 , a network configuration tool that simplifies networking configuration on Linux

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved