Subject: CVS commit: [pkgsrc-2014Q2] pkgsrc/lang/perl5
From: Matthias Scheler
Date: 2014-09-30 19:03:04
Message id: 20140930170304.5936A98@cvs.netbsd.org
Log Message:
Pullup ticket #4507 - requested by spz
lang/perl5: security patch

Revisions pulled up:
- lang/perl5/Makefile                                           1.230
- lang/perl5/distinfo                                           1.123
- lang/perl5/patches/patch-dist_Data-Dumper_Dumper.pm           1.1
- lang/perl5/patches/patch-dist_Data-Dumper_Dumper.xs           1.1

---
   Module Name:	pkgsrc
   Committed By:	spz
   Date:		Mon Sep 29 11:36:02 UTC 2014

   Modified Files:
   	pkgsrc/lang/perl5: Makefile distinfo
   Added Files:
   	pkgsrc/lang/perl5/patches: patch-dist_Data-Dumper_Dumper.pm
   	    patch-dist_Data-Dumper_Dumper.xs

   Log Message:
   Minimally invasive fix for CVE-2014-4330, also known as
   https://www.lsexperts.de/advisories/lse-2014-06-10.txt,
   a stack overflow vulnerability in Data::Dumper

   Patches taken from
   \ 
http://perl5.git.perl.org/perl.git/commitdiff/19be3be6968e2337bcdfe480693fff795ecd1304,
   to be removed when updating to 5.20.1 (or later).

   perl-5.20.0nb2 is fit for pkg_add -u replacement of perl-5.20.0nb1
Files:
RevisionActionfile
1.228.2.1modifypkgsrc/lang/perl5/Makefile
1.121.2.2modifypkgsrc/lang/perl5/distinfo
1.1.2.2addpkgsrc/lang/perl5/patches/patch-dist_Data-Dumper_Dumper.pm
1.1.2.2addpkgsrc/lang/perl5/patches/patch-dist_Data-Dumper_Dumper.xs