[El-errata] ELSA-2010-0458 Moderate: Enterprise Linux 5 perl security update
Errata Announcements for Enterprise Linux
el-errata at oss.oracle.com
Mon Jun 7 15:23:52 PDT 2010
Enterprise Linux Security Advisory ELSA-2010-0458
https://rhn.redhat.com/errata/RHSA-2010-0458.html
The following updated rpms for Enterprise Linux 5 have been uploaded to
the Unbreakable Linux Network:
i386:
perl-5.8.8-32.el5_5.1.i386.rpm
perl-suidperl-5.8.8-32.el5_5.1.i386.rpm
x86_64:
perl-5.8.8-32.el5_5.1.x86_64.rpm
perl-suidperl-5.8.8-32.el5_5.1.x86_64.rpm
ia64:
perl-5.8.8-32.el5_5.1.ia64.rpm
perl-suidperl-5.8.8-32.el5_5.1.ia64.rpm
SRPMS:
http://oss.oracle.com/el5/SRPMS-updates/perl-5.8.8-32.el5_5.1.src.rpm
Description of changes:
[4:5.8.8-32.el5.1]
- third version of patch fix change of behaviour of rmtree for common user
- Resolves: rhbz#597203
[4:5.8.8-32.el5]
- rhbz#595416 change documentation of File::Path
- Related: rhbz#591167
[4:5.8.8-31.el5]
- remove previous fix
- Related: rhbz#591167
[4:5.8.8-30.el5]
- change config to file on Util.so
- Related: rhbz#594406
[4:5.8.8-29.el5]
- CVE-2008-5302 - use latest patch without Cwd module
- 507378 because of our paths we need to overload old Util.so in case
customer installed
Scalar::Util from cpan. In this case we marked new Util.so as .rpmnew.
- Related: rhbz#591167
- Resolves: rhbz#594406
[- 4:5.8.8-28.el5]
- CVE-2008-5302 perl: File::Path rmtree race condition (CVE-2005-0448)
reintroduced after upstream rebase to 5.8.8-1
- CVE-2010-1168 perl Safe: Intended restriction bypass via object references
- CVE-2010-1447 Safe 2.26 and earlier: Intended restriction bypass via Perl
object references in code executed outside safe compartment
- Related: rhbz#591167
More information about the El-errata
mailing list