Request 285072: Submit perl-YAML-LibYAML - openSUSE Build Service

Overview

Request 285072 accepted

- update to 0.59
- this update fixes 3 vulnerabilities in the embedded LibYAML:
* CVE-2014-9130: libyaml: assert failure when processing
wrapped strings (bnc#907809)
* CVE-2014-2525: libyaml: heap overflow during parsing (bnc#868944)
* CVE-2013-6393: libyaml: heap based buffer, overflow due to
integer misuse (bnc#860617)
- dropped CVE-2012-1152-YAML-LibYAML-0.35-format-error.patch (upstream)
- upstream changelog:
* PR/23 Better scalar dump heuristics
* More closely match YAML.pm
* Add a VERSION statement to YAML::LibYAML (issue#8)
* Applied fix for PR/21. nawglan++
* Use Swim cpan-tail block functions in doc
* Get YAML::XS using latest libyaml
* Fix for
https://bitbucket.org/xi/libyaml/issue/10/wrapped-strings-cause-assert-failure
* Fix e1 test failure on 5.21.4
* Remove =travis section
* Meta 0.0.2
* Eliminate spurious trailing whitespace
* Add t/000-compile-modules.t
* Fix swim errors
* Add badges to doc
* Fix ReadMe
* Fix Meta and add Contributing.

Created by vitezslav_cizek over 9 years ago
In state accepted
Package maintainers: pgajdos, pmonrealgonzalez, and tinita

Submit perl-YAML-LibYAML

Comments for request 285072 0

Login required, please login in order to comment

Request History

vitezslav_cizek created request over 9 years ago

- update to 0.59
- this update fixes 3 vulnerabilities in the embedded LibYAML:
* CVE-2014-9130: libyaml: assert failure when processing
wrapped strings (bnc#907809)
* CVE-2014-2525: libyaml: heap overflow during parsing (bnc#868944)
* CVE-2013-6393: libyaml: heap based buffer, overflow due to
integer misuse (bnc#860617)
- dropped CVE-2012-1152-YAML-LibYAML-0.35-format-error.patch (upstream)
- upstream changelog:
* PR/23 Better scalar dump heuristics
* More closely match YAML.pm
* Add a VERSION statement to YAML::LibYAML (issue#8)
* Applied fix for PR/21. nawglan++
* Use Swim cpan-tail block functions in doc
* Get YAML::XS using latest libyaml
* Fix for
https://bitbucket.org/xi/libyaml/issue/10/wrapped-strings-cause-assert-failure
* Fix e1 test failure on 5.21.4
* Remove =travis section
* Meta 0.0.2
* Eliminate spurious trailing whitespace
* Add t/000-compile-modules.t
* Fix swim errors
* Add badges to doc
* Fix ReadMe
* Fix Meta and add Contributing.

coolo accepted request over 9 years ago

openSUSE Build Service is sponsored by