Fix a possibly infinite recursion in Perl Data::Dumper.

Derived from Perl git commit http://perl5.git.perl.org/perl.git 19be3be6968e2337bcdfe480693fff795ecd1304 Add a configuration variable/option to limit recursion when dumping deep data structures. Defaults the limit to 1000, which can be reduced or increase, or eliminated by setting it to 0. This patch addresses CVE-2014-4330. This bug was found and reported by: LSE Leading Security Experts GmbH employee Markus Vervier. From Maximilian Pascher; OK schwarze@ afresh1@
author: bluhm <bluhm@openbsd.org> 2014-10-26 22:04:16 +0000
committer: bluhm <bluhm@openbsd.org> 2014-10-26 22:04:16 +0000
commit: adf9d3031d693476af54c7c1a0d5eb37e63b433a (patch)
tree: cd5dfae2f25137f53cb84eb5253cd07aa22f3b5a /gnu/usr.bin/perl/patchlevel.h
parent: Prefer mkostemp(O_CLOEXEC) over mkstemp()+fcntl(F_SETFD) (diff)
download: wireguard-openbsd-adf9d3031d693476af54c7c1a0d5eb37e63b433a.tar.xz
wireguard-openbsd-adf9d3031d693476af54c7c1a0d5eb37e63b433a.zip
1 files changed, 1 insertions, 0 deletions
diff --git a/gnu/usr.bin/perl/patchlevel.h b/gnu/usr.bin/perl/patchlevel.h
index d51767c573f..b07ef618009 100644
--- a/gnu/usr.bin/perl/patchlevel.h
+++ b/gnu/usr.bin/perl/patchlevel.h
@@ -134,6 +134,7 @@ hunk.
 static const char * const local_patches[] = {
 	NULL
 	,"Update libnet to 1.27"
+	,"CVE-2014-4330"
 #ifdef PERL_GIT_UNCOMMITTED_CHANGES
 	,"uncommitted-changes"
 #endif
author	bluhm <bluhm@openbsd.org>	2014-10-26 22:04:16 +0000
committer	bluhm <bluhm@openbsd.org>	2014-10-26 22:04:16 +0000
commit	adf9d3031d693476af54c7c1a0d5eb37e63b433a (patch)
tree	cd5dfae2f25137f53cb84eb5253cd07aa22f3b5a /gnu/usr.bin/perl/patchlevel.h
parent	Prefer mkostemp(O_CLOEXEC) over mkstemp()+fcntl(F_SETFD) (diff)
download	wireguard-openbsd-adf9d3031d693476af54c7c1a0d5eb37e63b433a.tar.xz wireguard-openbsd-adf9d3031d693476af54c7c1a0d5eb37e63b433a.zip