-
Committer:
Package Import Robot
-
Author(s):
Marc Deslauriers
-
Date:
2015-04-24 12:02:12 UTC
-
Revision ID:
package-import@ubuntu.com-20150424120212-erhs59gtl9buc80s
Tags: 0.68-1ubuntu0.12.04.2
* SECURITY UPDATE: arbitrary code execution and incorrect signature
verification
- debian/patches/CVE-2015-340x.patch: properly handle temp files and
headers in lib/Module/Signature.pm, Makefile.PL.
- debian/patches/CVE-2015-3409.patch: don't load modules from relative
paths in lib/Module/Signature.pm.
- CVE-2015-3406
- CVE-2015-3407
- CVE-2015-3408
- CVE-2015-3409