CVS commit: [pkgsrc-2014Q2] pkgsrc/lang/perl5

["Matthias Scheler" <tron%netbsd.org@localhost>]

Module Name:    pkgsrc
Committed By:   tron
Date:           Tue Sep 30 17:03:04 UTC 2014

Modified Files:
        pkgsrc/lang/perl5 [pkgsrc-2014Q2]: Makefile distinfo
Added Files:
        pkgsrc/lang/perl5/patches [pkgsrc-2014Q2]:
            patch-dist_Data-Dumper_Dumper.pm patch-dist_Data-Dumper_Dumper.xs

Log Message:
Pullup ticket #4507 - requested by spz
lang/perl5: security patch

Revisions pulled up:
- lang/perl5/Makefile                                           1.230
- lang/perl5/distinfo                                           1.123
- lang/perl5/patches/patch-dist_Data-Dumper_Dumper.pm           1.1
- lang/perl5/patches/patch-dist_Data-Dumper_Dumper.xs           1.1

---
   Module Name: pkgsrc
   Committed By:        spz
   Date:                Mon Sep 29 11:36:02 UTC 2014

   Modified Files:
        pkgsrc/lang/perl5: Makefile distinfo
   Added Files:
        pkgsrc/lang/perl5/patches: patch-dist_Data-Dumper_Dumper.pm
            patch-dist_Data-Dumper_Dumper.xs

   Log Message:
   Minimally invasive fix for CVE-2014-4330, also known as
   https://www.lsexperts.de/advisories/lse-2014-06-10.txt,
   a stack overflow vulnerability in Data::Dumper

   Patches taken from
   http://perl5.git.perl.org/perl.git/commitdiff/19be3be6968e2337bcdfe480693fff795ecd1304,
   to be removed when updating to 5.20.1 (or later).

   perl-5.20.0nb2 is fit for pkg_add -u replacement of perl-5.20.0nb1


To generate a diff of this commit:
cvs rdiff -u -r1.228 -r1.228.2.1 pkgsrc/lang/perl5/Makefile
cvs rdiff -u -r1.121.2.1 -r1.121.2.2 pkgsrc/lang/perl5/distinfo
cvs rdiff -u -r0 -r1.1.2.2 \
    pkgsrc/lang/perl5/patches/patch-dist_Data-Dumper_Dumper.pm \
    pkgsrc/lang/perl5/patches/patch-dist_Data-Dumper_Dumper.xs

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.