Date: Thu, 27 Jun 1996 00:06:49 +0200 (MET DST) From: guido@gvr.win.tue.nl (Guido van Rooij) To: nate@mt.sri.com (Nate Williams) Cc: taob@io.org, freebsd-security@FreeBSD.ORG Subject: Re: CERT Advisory CA-96.12 - Vulnerability in suidperl (fwd) Message-ID: <199606262206.AAA24375@gvr.win.tue.nl> In-Reply-To: <199606261914.NAA05459@rocky.mt.sri.com> from Nate Williams at "Jun 26, 96 01:14:32 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
Nate Williams wrote: > > I believe this applies to perl4 as shipped with all versions of > > FreeBSD, as well as the perl5 packages/ports. Does anyone know what > > the actual vulnerability is? > > I don't, but thanks for bringing this up. I was planning on bringing > this in but I forgot. I just applied the suggested change to the > version of perl in -stable and -current, so it'll be in 2.1.5. > We already were no longer vulnerable. Howver, the applied fix won;t hurt. -Guido
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199606262206.AAA24375>