Package: libcgi-simple-perl / 1.115-2
Metadata
Package | Version | Patches format |
---|---|---|
libcgi-simple-perl | 1.115-2 | 3.0 (quilt) |
Patch series
view the series filePatch | File delta | Description |
---|---|---|
cve 2010 4410.patch | (download) |
Makefile.PL |
1 1 + 0 - 0 ! |
test for fix cvs-2010-4410 Always check for CRLF in supplied header values and require that CRLF is followed by a whitespace, in which case the CRLF is stripped. Die if CRLF is followed by non-whitespace character. Bug-Debian: http://bugs.debian.org/606379 |
cve 2010 4411.patch | (download) |
lib/CGI/Simple.pm |
2 1 + 1 - 0 ! |
[cve-2010-4411] port latest header-injection refinement from cgi.pm See also http://www.openwall.com/lists/oss-security/2011/01/04/9 |
no shellwords pl.patch | (download) |
lib/CGI/Simple.pm |
4 2 + 2 - 0 ! |
use text::parsewords instead of shellwords.pl The shellwords.pl library is deprecated and will be removed in a future version of perl. Text::ParseWords has been in core since 5.0.0 and it is used by shellwords.pl already. Adapted from <https://github.com/markstos/CGI.pm/commit/0cf175dbfbeaa46d71343412c715096da5bd0eaf> |
1