]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core.git/commit
projects / thirdparty / openembedded / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d735b2a) | patch
perl: fix CVE-2023-31484/47038/47100
authorLee Chee Yang <chee.yang.lee@intel.com>
Thu, 14 Dec 2023 12:32:51 +0000 (20:32 +0800)
committerSteve Sakoman <steve@sakoman.com>
Thu, 14 Dec 2023 17:03:20 +0000 (07:03 -1000)
commit74861848ba0d3ba920ef54f016240807ba42682a
tree224d4848d95ddea6d90ceced6f491690c75e3d1ctree
parentd735b2a94091f9a4a91917c73bd73d9ce4a31e3ecommit | diff
perl: fix CVE-2023-31484/47038/47100

import patch from ubuntu
http://archive.ubuntu.com/ubuntu/pool/main/p/perl/perl_5.30.0-9ubuntu0.5.debian.tar.xz

fix:
CVE-2023-31484
CVE-2023-47038
CVE-2023-47100

as per https://ubuntu.com/security/CVE-2023-47100 ,
CVE-2023-47100 is duplicate of CVE-2023-47038.

perl import entire CPAN in single commit,
hence backport fix from their upstream cpan instead.

Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
meta/recipes-devtools/perl/files/CVE-2023-31484.patch [new file with mode: 0644] blob
meta/recipes-devtools/perl/files/CVE-2023-47038.patch [new file with mode: 0644] blob
meta/recipes-devtools/perl/perl_5.30.1.bb diff | blob | blame | history
Mirror of git://git.openembedded.org/openembedded-core