April 2024 - perl-devel - Fedora Mailing-Lists

[Bug 1821879] New: CVE-2013-7488 perl-Convert-ASN1: allows remote attackers to cause an infinite loop via unexpected input

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1821879 Bug ID: 1821879 Summary: CVE-2013-7488 perl-Convert-ASN1: allows remote attackers to cause an infinite loop via unexpected input Product: Security Response Hardware: All OS: Linux Status: NEW Component: vulnerability Keywords: Security Severity: medium Priority: medium Assignee: security-response-team(a)redhat.com Reporter: gsuckevi(a)redhat.com CC: caillon+fedoraproject(a)gmail.com, caolanm(a)redhat.com, john.j5live(a)gmail.com, jplesnik(a)redhat.com, kasal(a)ucw.cz, perl-devel(a)lists.fedoraproject.org, perl-maint-list(a)redhat.com, ppisar(a)redhat.com, psabata(a)redhat.com, rhughes(a)redhat.com, rstrode(a)redhat.com, sandmann(a)redhat.com Target Milestone: --- Classification: Other perl-Convert-ASN1 (aka the Convert::ASN1 module for Perl) through 0.27 allows remote attackers to cause an infinite loop via unexpected input. Reference: https://github.com/gbarr/perl-Convert-ASN1/issues/14 -- You are receiving this mail because: You are on the CC list for the bug.

1 month

1
7
0 / 0

[Bug 2188459] New: CVE-2022-36788 slic3r: Heap-based buffer overflow in the TriangleMesh clone functionality [fedora-all]

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2188459 Bug ID: 2188459 Summary: CVE-2022-36788 slic3r: Heap-based buffer overflow in the TriangleMesh clone functionality [fedora-all] Product: Fedora Version: 38 Status: NEW Component: slic3r Keywords: Security, SecurityTracking Severity: medium Priority: medium Assignee: mhroncok(a)redhat.com Reporter: psampaio(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: mhroncok(a)redhat.com, perl-devel(a)lists.fedoraproject.org Target Milestone: --- Classification: Fedora More information about this security flaw is available in the following bug: http://bugzilla.redhat.com/show_bug.cgi?id=2188458 Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2188459

1 month

1
4
0 / 0

[Bug 2262784] New: Upgrade perl-CGI-Simple to 1.281

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2262784 Bug ID: 2262784 Summary: Upgrade perl-CGI-Simple to 1.281 Product: Fedora Version: rawhide URL: https://metacpan.org/release/CGI-Simple Status: NEW Component: perl-CGI-Simple Assignee: spotrh(a)gmail.com Reporter: jplesnik(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: perl-devel(a)lists.fedoraproject.org, spotrh(a)gmail.com Target Milestone: --- Classification: Fedora Latest Fedora delivers 1.280 version. Upstream released 1.281. When you have free time, please upgrade it. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2262784 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-...

1 month, 1 week

1
2
0 / 0

[Bug 2260484] New: Upgrade perl-Email-Valid to 1.204

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2260484 Bug ID: 2260484 Summary: Upgrade perl-Email-Valid to 1.204 Product: Fedora Version: rawhide URL: https://metacpan.org/release/Email-Valid Status: NEW Component: perl-Email-Valid Assignee: spotrh(a)gmail.com Reporter: jplesnik(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: perl-devel(a)lists.fedoraproject.org, spotrh(a)gmail.com Target Milestone: --- Classification: Fedora Latest Fedora delivers 1.203 version. Upstream released 1.204. When you have free time, please upgrade it. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2260484 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-...

1 month, 1 week

1
2
0 / 0

[Bug 2252556] New: perl-Text-CSV-2.04 is available

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2252556 Bug ID: 2252556 Summary: perl-Text-CSV-2.04 is available Product: Fedora Version: rawhide Status: NEW Component: perl-Text-CSV Keywords: FutureFeature, Triaged Assignee: jvromans(a)squirrel.nl Reporter: upstream-release-monitoring(a)fedoraproject.org QA Contact: extras-qa(a)fedoraproject.org CC: epel-packagers-sig(a)lists.fedoraproject.org, jvromans(a)squirrel.nl, lkundrak(a)v3.sk, mi(a)v3.sk, perl-devel(a)lists.fedoraproject.org, redhat-bugzilla(a)linuxnetz.de Target Milestone: --- Classification: Fedora Releases retrieved: 2.04 Upstream release that is considered latest: 2.04 Current version/release in rawhide: 2.03-1.fc40 URL: http://search.cpan.org/dist/Text-CSV/ Please consult the package updates policy before you issue an update to a stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/ More information about the service that created this bug can be found at: https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release... Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream. Based on the information from Anitya: https://release-monitoring.org/project/3433/ To change the monitoring settings for the project, please visit: https://src.fedoraproject.org/rpms/perl-Text-CSV -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2252556 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-...

1 month, 1 week

1
4
0 / 0

[Bug 1941155] New: perl-Crypt-OpenSSL-DSA-0.20 is available

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=1941155 Bug ID: 1941155 Summary: perl-Crypt-OpenSSL-DSA-0.20 is available Product: Fedora Version: rawhide Status: NEW Component: perl-Crypt-OpenSSL-DSA Keywords: FutureFeature, Triaged Assignee: wjhns174(a)hardakers.net Reporter: upstream-release-monitoring(a)fedoraproject.org QA Contact: extras-qa(a)fedoraproject.org CC: perl-devel(a)lists.fedoraproject.org, wjhns174(a)hardakers.net Target Milestone: --- Classification: Fedora Latest upstream release: 0.20 Current version/release in rawhide: 0.19-15.fc34 URL: http://search.cpan.org/dist/Crypt-OpenSSL-DSA/ Please consult the package updates policy before you issue an update to a stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/ More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream. Based on the information from anitya: https://release-monitoring.org/project/2745/ -- You are receiving this mail because: You are on the CC list for the bug.

1 month, 1 week

1
5
0 / 0

[Bug 2037658] New: Please branch and build perl-MouseX-Foreign for EPEL 9

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2037658 Bug ID: 2037658 Summary: Please branch and build perl-MouseX-Foreign for EPEL 9 Product: Fedora EPEL Version: epel9 Status: NEW Component: perl-MouseX-Foreign Assignee: emmanuel(a)seyman.fr Reporter: paul(a)city-fan.org QA Contact: extras-qa(a)fedoraproject.org CC: emmanuel(a)seyman.fr, perl-devel(a)lists.fedoraproject.org, ppisar(a)redhat.com Target Milestone: --- Classification: Fedora Could you please branch and build perl-MouseX-Foreign for EPEL 9 ? If you like you could add me (FAS: pghmcfc) as a committer to the package and I'll do it myself. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2037658

1 month, 1 week

1
9
0 / 0

[Bug 2264848] New: perl-Gtk2-1.24993-15.fc41 FTBFS: Can't load 'blib/arch/auto/Gtk2/Gtk2.so' for module Gtk2: blib/arch/auto/Gtk2/Gtk2.so: undefined symbol: SvGdkAtom at /usr/lib64/perl5/DynaLoader.pm line 206. � at tools/podifystockitems.pl line 0.

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2264848 Bug ID: 2264848 Summary: perl-Gtk2-1.24993-15.fc41 FTBFS: Can't load 'blib/arch/auto/Gtk2/Gtk2.so' for module Gtk2: blib/arch/auto/Gtk2/Gtk2.so: undefined symbol: SvGdkAtom at /usr/lib64/perl5/DynaLoader.pm line 206. � at tools/podifystockitems.pl line 0. Product: Fedora Version: rawhide URL: https://koschei.fedoraproject.org/package/perl-Gtk2 Status: NEW Component: perl-Gtk2 Assignee: spotrh(a)gmail.com Reporter: ppisar(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: perl-devel(a)lists.fedoraproject.org, spotrh(a)gmail.com Blocks: 2260875 (F41FTBFS,RAWHIDEFTBFS) Target Milestone: --- Classification: Fedora perl-Gtk2-1.24993-15.fc41 fails to build in Fedora 41: Creating stock items POD... Creating enum POD... Can't load 'blib/arch/auto/Gtk2/Gtk2.so' for module Gtk2: blib/arch/auto/Gtk2/Gtk2.so: undefined symbol: SvGdkAtom at /usr/lib64/perl5/DynaLoader.pm line 206. � at tools/podifystockitems.pl line 0. Compilation failed in require. BEGIN failed--compilation aborted. make: *** [Makefile:1189: build/stock_items.podi] Error 2 make: *** Waiting for unfinished jobs.... Can't load 'blib/arch/auto/Gtk2/Gtk2.so' for module Gtk2: blib/arch/auto/Gtk2/Gtk2.so: undefined symbol: SvGdkAtom at /usr/lib64/perl5/DynaLoader.pm line 206. � at tools/podifyenums.pl line 0. Compilation failed in require. BEGIN failed--compilation aborted. make: *** [Makefile:1185: blib/lib/Gtk2/enums.pod] Error 2 error: Bad exit status from /var/tmp/rpm-tmp.gFTlG1 (%build) A difference between the passing and failing buildroots is at <https://koschei.fedoraproject.org/build/17411988> Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=2260875 [Bug 2260875] Fedora 41 FTBFS Tracker -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2264848 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-...

1 month, 1 week

1
2
0 / 0

[Bug 2269568] New: CVE-2024-2467 perl-Crypt-OpenSSL-RSA: side-channel attack in PKCS#1 v1.5 padding mode (Marvin Attack) [fedora-all]

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2269568 Bug ID: 2269568 Summary: CVE-2024-2467 perl-Crypt-OpenSSL-RSA: side-channel attack in PKCS#1 v1.5 padding mode (Marvin Attack) [fedora-all] Product: Fedora Version: 39 Status: NEW Component: perl-Crypt-OpenSSL-RSA Keywords: Security, SecurityTracking Severity: medium Priority: medium Assignee: wjhns174(a)hardakers.net Reporter: mcascell(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: perl-devel(a)lists.fedoraproject.org, wjhns174(a)hardakers.net Target Milestone: --- Classification: Fedora More information about this security flaw is available in the following bug: http://bugzilla.redhat.com/show_bug.cgi?id=2269567 Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2269568 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-...

1 month, 1 week

1
4
0 / 0

[Bug 2251190] New: Upgrade perl-V to 0.18

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2251190 Bug ID: 2251190 Summary: Upgrade perl-V to 0.18 Product: Fedora Version: rawhide URL: https://metacpan.org/release/V Status: NEW Component: perl-V Assignee: jvromans(a)squirrel.nl Reporter: jplesnik(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: jvromans(a)squirrel.nl, perl-devel(a)lists.fedoraproject.org Target Milestone: --- Classification: Fedora Latest Fedora delivers 0.17 version. Upstream released 0.18. When you have free time, please upgrade it. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2251190 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-...

1 month, 1 week

1
3
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

perl-devel April 2024