[pkgsrc/trunk]: pkgsrc perl5: updated to 5.26.2

[adam <adam%pkgsrc.org@localhost>]

details:   https://anonhg.NetBSD.org/pkgsrc/rev/4d6f6b6b85d7
branches:  trunk
changeset: 306813:4d6f6b6b85d7
user:      adam <adam%pkgsrc.org@localhost>
date:      Fri Apr 27 09:44:27 2018 +0000
description:
perl5: updated to 5.26.2

5.26.2:

Security
[CVE-2018-6797] heap-buffer-overflow (WRITE of size 1) in S_regatom (regcomp.c)
A crafted regular expression could cause a heap buffer write overflow, with control over the bytes written.
[CVE-2018-6798] Heap-buffer-overflow in Perl__byte_dump_string (utf8.c)
Matching a crafted locale dependent regular expression could cause a heap buffer read overflow and potentially information disclosure.
[CVE-2018-6913] heap-buffer-overflow in S_pack_rec
pack() could cause a heap buffer write overflow with a large item count.
Assertion failure in Perl__core_swash_init (utf8.c)
Control characters in a supposed Unicode property name could cause perl to crash. This has been fixed.

Updated Modules and Pragmata
Module::CoreList has been upgraded from version 5.20170922_26 to 5.20180414_26.
PerlIO::via has been upgraded from version 0.16 to 0.17.
Term::ReadLine has been upgraded from version 1.16 to 1.17.
Unicode::UCD has been upgraded from version 0.68 to 0.69.

Selected Bug Fixes
The readpipe() built-in function now checks at compile time that it has only one parameter expression, and puts it in scalar context, thus ensuring that it doesn't corrupt the stack at runtime.
Fixed a use after free bug in pp_list introduced in Perl 5.27.1.
Parsing a sub definition could cause a use after free if the sub keyword was followed by whitespace including newlines (and comments).
The tokenizer now correctly adjusts a parse pointer when skipping whitespace in an ${identifier} construct.
Accesses to ${^LAST_FH} no longer assert after using any of a variety of I/O operations on a non-glob.
sort now performs correct reference counting when aliasing $a and $b, thus avoiding premature destruction and leakage of scalars if they are re-aliased during execution of the sort comparator.
Some convoluted kinds of regexp no longer cause an arithmetic overflow when compiled.
Fixed a duplicate symbol failure with -flto -mieee-fp builds. pp.c defined _LIB_VERSION which -lieee already defines.
A NULL pointer dereference in the S_regmatch() function has been fixed.
Failures while compiling code within other constructs, such as with string interpolation and the right part of s///e now cause compilation to abort earlier.

diffstat:

 databases/p5-gdbm/Makefile |   3 +--
 lang/perl5/Makefile        |   3 +--
 lang/perl5/Makefile.common |   6 +++---
 lang/perl5/distinfo        |  10 +++++-----
 4 files changed, 10 insertions(+), 12 deletions(-)

diffs (63 lines):

diff -r c49fb821bc97 -r 4d6f6b6b85d7 databases/p5-gdbm/Makefile
--- a/databases/p5-gdbm/Makefile        Fri Apr 27 07:45:33 2018 +0000
+++ b/databases/p5-gdbm/Makefile        Fri Apr 27 09:44:27 2018 +0000
@@ -1,6 +1,5 @@
-# $NetBSD: Makefile,v 1.48 2018/01/28 20:10:44 wiz Exp $
+# $NetBSD: Makefile,v 1.49 2018/04/27 09:44:27 adam Exp $
 
-PKGREVISION= 3
 .include "../../lang/perl5/Makefile.common"
 PKGNAME=       p5-${DISTNAME:S/perl/gdbm/}
 CATEGORIES=    databases perl5
diff -r c49fb821bc97 -r 4d6f6b6b85d7 lang/perl5/Makefile
--- a/lang/perl5/Makefile       Fri Apr 27 07:45:33 2018 +0000
+++ b/lang/perl5/Makefile       Fri Apr 27 09:44:27 2018 +0000
@@ -1,9 +1,8 @@
-# $NetBSD: Makefile,v 1.244 2018/01/12 11:32:20 jperkin Exp $
+# $NetBSD: Makefile,v 1.245 2018/04/27 09:44:27 adam Exp $
 
 .include "license.mk"
 .include "Makefile.common"
 
-PKGREVISION=   2
 COMMENT=       Practical Extraction and Report Language
 
 CONFLICTS+=    perl-base-[0-9]* perl-thread-[0-9]*
diff -r c49fb821bc97 -r 4d6f6b6b85d7 lang/perl5/Makefile.common
--- a/lang/perl5/Makefile.common        Fri Apr 27 07:45:33 2018 +0000
+++ b/lang/perl5/Makefile.common        Fri Apr 27 09:44:27 2018 +0000
@@ -1,13 +1,13 @@
-# $NetBSD: Makefile.common,v 1.32 2017/10/04 12:54:17 he Exp $
+# $NetBSD: Makefile.common,v 1.33 2018/04/27 09:44:27 adam Exp $
 #
 # used by lang/perl5/Makefile
 # used by databases/p5-gdbm/Makefile
 
-DISTNAME=      perl-5.26.1
+DISTNAME=      perl-5.26.2
 CATEGORIES=    lang devel perl5
 MASTER_SITES=  ${MASTER_SITE_PERL_CPAN:S,/modules/by-module/$,/src/5.0/,}
 DISTFILES+=    ${DISTNAME}${EXTRACT_SUFX}
-EXTRACT_SUFX=  .tar.bz2
+EXTRACT_SUFX=  .tar.xz
 
 MAINTAINER=    pkgsrc-users%NetBSD.org@localhost
 HOMEPAGE=      https://www.perl.org/
diff -r c49fb821bc97 -r 4d6f6b6b85d7 lang/perl5/distinfo
--- a/lang/perl5/distinfo       Fri Apr 27 07:45:33 2018 +0000
+++ b/lang/perl5/distinfo       Fri Apr 27 09:44:27 2018 +0000
@@ -1,9 +1,9 @@
-$NetBSD: distinfo,v 1.149 2018/01/15 10:07:50 jperkin Exp $
+$NetBSD: distinfo,v 1.150 2018/04/27 09:44:27 adam Exp $
 
-SHA1 (perl-5.26.1.tar.bz2) = fadec45b7b48a06b3d2adab91c13f568dce717cd
-RMD160 (perl-5.26.1.tar.bz2) = fff5bf2e6ad6488b8866bf300c32707972b8ffc6
-SHA512 (perl-5.26.1.tar.bz2) = 821a4b78a22d24d6f79b56f68ed4a36db24bddc4dbe36c9d2622cd15d7abf6548186c037dea3d3745c1781af83339d0b54297f8094aa538046c0e57a953b5547
-Size (perl-5.26.1.tar.bz2) = 14492844 bytes
+SHA1 (perl-5.26.2.tar.xz) = bfa5c7921ed7bf5e035dbf2f7ff81367b81e372c
+RMD160 (perl-5.26.2.tar.xz) = 45a0bc31f57b786ebe1273b7e5070e6e1bf59c7b
+SHA512 (perl-5.26.2.tar.xz) = fd54c90da250144c81b94587c01c49fa367f84c54406f1d360ddab4a41589a7b19efc1707f95c95d6357fae66fc3f6f00bf69dd7741db114c7034a14f52be65f
+Size (perl-5.26.2.tar.xz) = 11931624 bytes
 SHA1 (patch-Configure) = 6f3aa5c8d971e2c58dbd3e348f9edd59e298c181
 SHA1 (patch-MANIFEST) = b27b0e1754fe2c4484931219fa17c562db88d41a
 SHA1 (patch-Makefile.SH) = e9353181a286f52303d09cb4ce0b2c04ec104217