diff --git a/Config-IniFiles-2.68.tar.gz b/Config-IniFiles-2.68.tar.gz deleted file mode 100644 index 60e6897..0000000 --- a/Config-IniFiles-2.68.tar.gz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:46f1d740dca8b02ad26ed8798b2c30308dce4d96b6f3780cb9e489de4d008ea9 -size 58255 diff --git a/Config-IniFiles-2.75.tar.gz b/Config-IniFiles-2.75.tar.gz new file mode 100644 index 0000000..0f66341 --- /dev/null +++ b/Config-IniFiles-2.75.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:503bd5923dbed3940a77d59868ce6fdf956f6aa6faf9105e4feeec0101ef9626 +size 62973 diff --git a/perl-Config-IniFiles.changes b/perl-Config-IniFiles.changes index d8ac831..797d026 100644 --- a/perl-Config-IniFiles.changes +++ b/perl-Config-IniFiles.changes @@ -1,3 +1,29 @@ +------------------------------------------------------------------- +Wed May 30 13:11:50 UTC 2012 - vcizek@suse.com + +- update to 2.75 +- fixes CVE-2012-2451 (bnc#760459) + * SECURITY BUG FIX: Config::IniFiles used to write to a temporary filename + with a predictable name ("${filename}-new") which opens the door for potential + exploits. + * Now requiring Fcntl (which is a core module) for SEEK_SET() and SEEK_CUR(). + * Now requiring List::MoreUtils (for any() and other functions), File::Temp + and File::Basename . + * Fix the test dependency (in the new t/31comments_with_spaces.t test) + on IO::stringy (now writing it to a file). + - This caused some CPAN Testers failures such as: + - http://www.cpantesters.org/cpan/report/c16b9978-7f40-11e1-9d6f-f6dbfa7543f5 + * Modernized some of the open() calls in the test files. + - three args open, lexcial file handles, etc. + * Fix https://sourceforge.net/tracker/?func=detail&aid=3388382&group_id=6926&atid=106926 + - "Trailing comments with whitespace are not recognised" + - Thanks to briconaut for the report and to rbowen for the patch and test. + * Add the method ->OutputConfigToFileHandle which is a more explicit and + safer version of ->OutputConfig. + - ->OutputConfig now uses it. + - all existing tests pass, and a new test was added to + t/15store-and-retrieve-here-doc-terminator.t . + ------------------------------------------------------------------- Wed Dec 7 13:53:12 UTC 2011 - coolo@suse.com diff --git a/perl-Config-IniFiles.spec b/perl-Config-IniFiles.spec index c6bccaf..6fc55f2 100644 --- a/perl-Config-IniFiles.spec +++ b/perl-Config-IniFiles.spec @@ -1,7 +1,7 @@ # # spec file for package perl-Config-IniFiles # -# Copyright (c) 2011 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2012 SUSE LINUX Products GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -21,7 +21,7 @@ Name: perl-Config-IniFiles Summary: Module for reading .ini-style configuration files License: GPL-1.0+ or Artistic-1.0 Group: Development/Libraries/Perl -Version: 2.68 +Version: 2.75 Release: 0 Url: http://search.cpan.org/dist/Config-IniFiles/ #Source: http://www.cpan.org/modules/by-module/Config/Config-IniFiles-2.58.tar.gz @@ -29,12 +29,18 @@ Source: %{cpan_name}-%{version}.tar.gz BuildArch: noarch BuildRoot: %{_tmppath}/%{name}-%{version}-build BuildRequires: perl +BuildRequires: perl-macros +BuildRequires: perl(File::Basename) +BuildRequires: perl(File::Temp) BuildRequires: perl(IO::Scalar) +BuildRequires: perl(List::MoreUtils) BuildRequires: perl(Module::Build) BuildRequires: perl(Test::Pod) >= 1.14 BuildRequires: perl(Test::Pod::Coverage) >= 1.04 -BuildRequires: perl-macros +Requires: perl(File::Basename) +Requires: perl(File::Temp) Requires: perl(IO::Scalar) +Requires: perl(List::MoreUtils) %{perl_requires} %description