pkgsrc-Users archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
Re: Update for p5-CGI-Simple
Am 08.09.2011 22:01, schrieb Thomas Klausner:
Thomas,
On Tue, Sep 06, 2011 at 03:44:11PM +0200, Stephan Tesch wrote:
Here is a patch for an update to p5-CGI-Simple to version 1.113
which resolves the header injection vulnerabilities. It adds a
dependency to p5-IO-stringy, which should IMO be there since 1.112
(according to the ChangeLog). Here's the list of changes (taken from
the official Changes file):
Thanks, cleaned up and committed!
Thomas
Many thanks!
Would it be possible to update the pkg-vulnerabilities to read:
p5-CGI-Simple<1.113 http-header-injection
http://secunia.com/advisories/42460/
Best regards,
Stephan
--
Stephan Tesch Phone + 49 (0)7071-9457-608
science + computing ag FAX + 49 (0)7071-9457-511
Hagellocher Weg 73
D-72070 Tuebingen Email: s.tesch%science-computing.de@localhost
--
Vorstand/Board of Management:
Dr. Bernd Finkbeiner, Dr. Roland Niemeier,
Dr. Arno Steitz, Dr. Ingrid Zech
Vorsitzender des Aufsichtsrats/
Chairman of the Supervisory Board:
Philippe Miltin
Sitz/Registered Office: Tuebingen
Registergericht/Registration Court: Stuttgart
Registernummer/Commercial Register No.: HRB 382196
Home |
Main Index |
Thread Index |
Old Index