Summary: | <dev-perl/libwww-perl-5.836: arbitrary code execution (CVE-2010-2253) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Stefan Behte (RETIRED) <craig> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | ||
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://bugzilla.redhat.com/show_bug.cgi?id=602800 | ||
Whiteboard: | B2 [glsa] | ||
Package list: | Runtime testing required: | --- |
Description
Stefan Behte (RETIRED)
2010-07-26 15:47:24 UTC
Please stabilize =dev-perl/libwww-perl-5.836 5.836 is long enough in the tree and also: | Fix problem where $resp->base would downcase its return value Tested on x86. Compiles and runs fine. Compiled and ran several rdeps. No issues. Should be good to stabilize. amd64/arm/x86 stable, thanks Dane After this: Index: libwww-perl-5.836.ebuild =================================================================== RCS file: /var/cvsroot/gentoo-x86/dev-perl/libwww-perl/libwww-perl-5.836.ebuild,v retrieving revision 1.2 diff -u -B -r1.2 libwww-perl-5.836.ebuild --- libwww-perl-5.836.ebuild 26 Jul 2010 20:49:23 -0000 1.2 +++ libwww-perl-5.836.ebuild 29 Jul 2010 16:21:28 -0000 @@ -41,4 +41,4 @@ dosym /usr/bin/lwp-request /usr/bin/HEAD fi } -#SRC_TEST=do +SRC_TEST=do all tests ran fine. Stable for HPPA PPC. alpha/ia64/m68k/s390/sh/sparc stable ppc64 done All arches done. GLSA request filed. This issue was resolved and addressed in GLSA 201402-04 at http://security.gentoo.org/glsa/glsa-201402-04.xml by GLSA coordinator Mikle Kolyada (Zlogene). |