It is suspected that this package is vulnerable to a security vulnerability due to expanding of malicious entities via dev-perl/XML-Twig. As such we ask maintainers with packages suspected to be vulnerable to verify if the package is (or have been) affected. Please see the information contained in the tracker bug 600818. # grep -Fr 'Twig->new' /var/tmp/portage/sci-biology/bioperl-1.6.9/work/BioPerl-1.6.901 /var/tmp/portage/sci-biology/bioperl-1.6.9/work/BioPerl-1.6.901/Bio/Phenotype/MeSH/Twig.pm: my $twig = Bio::Phenotype::MeSH::Twig->new(); /var/tmp/portage/sci-biology/bioperl-1.6.9/work/BioPerl-1.6.901/Bio/DB/Taxonomy/entrez.pm: my $twig = XML::Twig->new; /var/tmp/portage/sci-biology/bioperl-1.6.9/work/BioPerl-1.6.901/Bio/DB/Taxonomy/entrez.pm: my $twig = XML::Twig->new; /var/tmp/portage/sci-biology/bioperl-1.6.9/work/BioPerl-1.6.901/Bio/DB/Taxonomy/entrez.pm: my $twig = XML::Twig->new; /var/tmp/portage/sci-biology/bioperl-1.6.9/work/BioPerl-1.6.901/Bio/DB/MeSH.pm: my $twig = Bio::Phenotype::MeSH::Twig->new(-parent => $parent); /var/tmp/portage/sci-biology/bioperl-1.6.9/work/BioPerl-1.6.901/Bio/DB/Biblio/eutils.pm: $self->twig(XML::Twig->new()); /var/tmp/portage/sci-biology/bioperl-1.6.9/work/BioPerl-1.6.901/scripts/taxa/taxid4species.PLS:my $t = XML::Twig->new(); /var/tmp/portage/sci-biology/bioperl-1.6.9/work/BioPerl-1.6.901/examples/biblio/biblio-eutils-example.pl:my $parser = XML::Twig->new(twig_roots => {"ArticleTitle" => \&print_title} ); /var/tmp/portage/sci-biology/bioperl-1.6.9/work/BioPerl-1.6.901/t/Phenotype/MeSH.t:ok my $twig = Bio::Phenotype::MeSH::Twig->new(-verbose =>$verbose);
