From fc22b3d6507c6745911b9dfcc68f1e665ae13dbc Mon Sep 17 00:00:00 2001 From: Daniel Baumann Date: Mon, 15 Apr 2024 21:43:11 +0200 Subject: Adding upstream version 4.22.0. Signed-off-by: Daniel Baumann --- upstream/debian-bookworm/man1/perl5143delta.1 | 294 ++++++++++++++++++++++++++ 1 file changed, 294 insertions(+) create mode 100644 upstream/debian-bookworm/man1/perl5143delta.1 (limited to 'upstream/debian-bookworm/man1/perl5143delta.1') diff --git a/upstream/debian-bookworm/man1/perl5143delta.1 b/upstream/debian-bookworm/man1/perl5143delta.1 new file mode 100644 index 00000000..7c26ff00 --- /dev/null +++ b/upstream/debian-bookworm/man1/perl5143delta.1 @@ -0,0 +1,294 @@ +.\" Automatically generated by Pod::Man 4.14 (Pod::Simple 3.43) +.\" +.\" Standard preamble: +.\" ======================================================================== +.de Sp \" Vertical space (when we can't use .PP) +.if t .sp .5v +.if n .sp +.. +.de Vb \" Begin verbatim text +.ft CW +.nf +.ne \\$1 +.. +.de Ve \" End verbatim text +.ft R +.fi +.. +.\" Set up some character translations and predefined strings. \*(-- will +.\" give an unbreakable dash, \*(PI will give pi, \*(L" will give a left +.\" double quote, and \*(R" will give a right double quote. \*(C+ will +.\" give a nicer C++. Capital omega is used to do unbreakable dashes and +.\" therefore won't be available. \*(C` and \*(C' expand to `' in nroff, +.\" nothing in troff, for use with C<>. +.tr \(*W- +.ds C+ C\v'-.1v'\h'-1p'\s-2+\h'-1p'+\s0\v'.1v'\h'-1p' +.ie n \{\ +. ds -- \(*W- +. ds PI pi +. if (\n(.H=4u)&(1m=24u) .ds -- \(*W\h'-12u'\(*W\h'-12u'-\" diablo 10 pitch +. if (\n(.H=4u)&(1m=20u) .ds -- \(*W\h'-12u'\(*W\h'-8u'-\" diablo 12 pitch +. ds L" "" +. ds R" "" +. ds C` "" +. ds C' "" +'br\} +.el\{\ +. ds -- \|\(em\| +. ds PI \(*p +. ds L" `` +. ds R" '' +. ds C` +. ds C' +'br\} +.\" +.\" Escape single quotes in literal strings from groff's Unicode transform. +.ie \n(.g .ds Aq \(aq +.el .ds Aq ' +.\" +.\" If the F register is >0, we'll generate index entries on stderr for +.\" titles (.TH), headers (.SH), subsections (.SS), items (.Ip), and index +.\" entries marked with X<> in POD. Of course, you'll have to process the +.\" output yourself in some meaningful fashion. +.\" +.\" Avoid warning from groff about undefined register 'F'. +.de IX +.. +.nr rF 0 +.if \n(.g .if rF .nr rF 1 +.if (\n(rF:(\n(.g==0)) \{\ +. if \nF \{\ +. de IX +. tm Index:\\$1\t\\n%\t"\\$2" +.. +. if !\nF==2 \{\ +. nr % 0 +. nr F 2 +. \} +. \} +.\} +.rr rF +.\" ======================================================================== +.\" +.IX Title "PERL5143DELTA 1" +.TH PERL5143DELTA 1 "2023-11-25" "perl v5.36.0" "Perl Programmers Reference Guide" +.\" For nroff, turn off justification. Always turn off hyphenation; it makes +.\" way too many mistakes in technical documents. +.if n .ad l +.nh +.SH "NAME" +perl5143delta \- what is new for perl v5.14.3 +.SH "DESCRIPTION" +.IX Header "DESCRIPTION" +This document describes differences between the 5.14.2 release and +the 5.14.3 release. +.PP +If you are upgrading from an earlier release such as 5.12.0, first read +perl5140delta, which describes differences between 5.12.0 and +5.14.0. +.SH "Core Enhancements" +.IX Header "Core Enhancements" +No changes since 5.14.0. +.SH "Security" +.IX Header "Security" +.ie n .SS """Digest"" unsafe use of eval (\s-1CVE\-2011\-3597\s0)" +.el .SS "\f(CWDigest\fP unsafe use of eval (\s-1CVE\-2011\-3597\s0)" +.IX Subsection "Digest unsafe use of eval (CVE-2011-3597)" +The \f(CW\*(C`Digest\->new()\*(C'\fR function did not properly sanitize input before +using it in an \fBeval()\fR call, which could lead to the injection of arbitrary +Perl code. +.PP +In order to exploit this flaw, the attacker would need to be able to set +the algorithm name used, or be able to execute arbitrary Perl code already. +.PP +This problem has been fixed. +.SS "Heap buffer overrun in 'x' string repeat operator (\s-1CVE\-2012\-5195\s0)" +.IX Subsection "Heap buffer overrun in 'x' string repeat operator (CVE-2012-5195)" +Poorly written perl code that allows an attacker to specify the count to +perl's 'x' string repeat operator can already cause a memory exhaustion +denial-of-service attack. A flaw in versions of perl before 5.15.5 can +escalate that into a heap buffer overrun; coupled with versions of glibc +before 2.16, it possibly allows the execution of arbitrary code. +.PP +This problem has been fixed. +.SH "Incompatible Changes" +.IX Header "Incompatible Changes" +There are no changes intentionally incompatible with 5.14.0. If any +exist, they are bugs and reports are welcome. +.SH "Deprecations" +.IX Header "Deprecations" +There have been no deprecations since 5.14.0. +.SH "Modules and Pragmata" +.IX Header "Modules and Pragmata" +.SS "New Modules and Pragmata" +.IX Subsection "New Modules and Pragmata" +None +.SS "Updated Modules and Pragmata" +.IX Subsection "Updated Modules and Pragmata" +.IP "\(bu" 4 +PerlIO::scalar was updated to fix a bug in which opening a filehandle to +a glob copy caused assertion failures (under debugging) or hangs or other +erratic behaviour without debugging. +.IP "\(bu" 4 +ODBM_File and NDBM_File were updated to allow building on GNU/Hurd. +.IP "\(bu" 4 +IPC::Open3 has been updated to fix a regression introduced in perl +5.12, which broke \f(CW\*(C`IPC::Open3::open3($in, $out, $err, \*(Aq\-\*(Aq)\*(C'\fR. +[perl #95748] +.IP "\(bu" 4 +Digest has been upgraded from version 1.16 to 1.16_01. +.Sp +See \*(L"Security\*(R". +.IP "\(bu" 4 +Module::CoreList has been updated to version 2.49_04 to add data for +this release. +.SS "Removed Modules and Pragmata" +.IX Subsection "Removed Modules and Pragmata" +None +.SH "Documentation" +.IX Header "Documentation" +.SS "New Documentation" +.IX Subsection "New Documentation" +None +.SS "Changes to Existing Documentation" +.IX Subsection "Changes to Existing Documentation" +\fIperlcheat\fR +.IX Subsection "perlcheat" +.IP "\(bu" 4 +perlcheat was updated to 5.14. +.SH "Configuration and Compilation" +.IX Header "Configuration and Compilation" +.IP "\(bu" 4 +h2ph was updated to search correctly gcc include directories on platforms +such as Debian with multi-architecture support. +.IP "\(bu" 4 +In Configure, the test for procselfexe was refactored into a loop. +.SH "Platform Support" +.IX Header "Platform Support" +.SS "New Platforms" +.IX Subsection "New Platforms" +None +.SS "Discontinued Platforms" +.IX Subsection "Discontinued Platforms" +None +.SS "Platform-Specific Notes" +.IX Subsection "Platform-Specific Notes" +.IP "FreeBSD" 4 +.IX Item "FreeBSD" +The FreeBSD hints file was corrected to be compatible with FreeBSD 10.0. +.IP "Solaris and NetBSD" 4 +.IX Item "Solaris and NetBSD" +Configure was updated for \*(L"procselfexe\*(R" support on Solaris and NetBSD. +.IP "HP-UX" 4 +.IX Item "HP-UX" +\&\s-1README\s0.hpux was updated to note the existence of a broken header in +HP-UX 11.00. +.IP "Linux" 4 +.IX Item "Linux" +libutil is no longer used when compiling on Linux platforms, which avoids +warnings being emitted. +.Sp +The system gcc (rather than any other gcc which might be in the compiling +user's path) is now used when searching for libraries such as \f(CW\*(C`\-lm\*(C'\fR. +.IP "Mac \s-1OS X\s0" 4 +.IX Item "Mac OS X" +The locale tests were updated to reflect the behaviour of locales in +Mountain Lion. +.IP "GNU/Hurd" 4 +.IX Item "GNU/Hurd" +Various build and test fixes were included for GNU/Hurd. +.Sp +\&\s-1LFS\s0 support was enabled in GNU/Hurd. +.IP "NetBSD" 4 +.IX Item "NetBSD" +The NetBSD hints file was corrected to be compatible with NetBSD 6.* +.SH "Bug Fixes" +.IX Header "Bug Fixes" +.IP "\(bu" 4 +A regression has been fixed that was introduced in 5.14, in \f(CW\*(C`/i\*(C'\fR +regular expression matching, in which a match improperly fails if the +pattern is in \s-1UTF\-8,\s0 the target string is not, and a Latin\-1 character +precedes a character in the string that should match the pattern. [perl +#101710] +.IP "\(bu" 4 +In case-insensitive regular expression pattern matching, no longer on +\&\s-1UTF\-8\s0 encoded strings does the scan for the start of match only look at +the first possible position. This caused matches such as +\&\f(CW\*(C`"f\ex{FB00}" =~ /ff/i\*(C'\fR to fail. +.IP "\(bu" 4 +The sitecustomize support was made relocatableinc aware, so that +\&\-Dusesitecustomize and \-Duserelocatableinc may be used together. +.IP "\(bu" 4 +The smartmatch operator (\f(CW\*(C`~~\*(C'\fR) was changed so that the right-hand side +takes precedence during \f(CW\*(C`Any ~~ Object\*(C'\fR operations. +.IP "\(bu" 4 +A bug has been fixed in the tainting support, in which an \f(CW\*(C`index()\*(C'\fR +operation on a tainted constant would cause all other constants to become +tainted. [perl #64804] +.IP "\(bu" 4 +A regression has been fixed that was introduced in perl 5.12, whereby +tainting errors were not correctly propagated through \f(CW\*(C`die()\*(C'\fR. +[perl #111654] +.IP "\(bu" 4 +A regression has been fixed that was introduced in perl 5.14, in which +\&\f(CW\*(C`/[[:lower:]]/i\*(C'\fR and \f(CW\*(C`/[[:upper:]]/i\*(C'\fR no longer matched the opposite case. +[perl #101970] +.SH "Acknowledgements" +.IX Header "Acknowledgements" +Perl 5.14.3 represents approximately 12 months of development since Perl 5.14.2 +and contains approximately 2,300 lines of changes across 64 files from 22 +authors. +.PP +Perl continues to flourish into its third decade thanks to a vibrant community +of users and developers. The following people are known to have contributed the +improvements that became Perl 5.14.3: +.PP +Abigail, Andy Dougherty, Carl Hayter, Chris 'BinGOs' Williams, Dave Rolsky, +David Mitchell, Dominic Hargreaves, Father Chrysostomos, Florian Ragwitz, +H.Merijn Brand, Jilles Tjoelker, Karl Williamson, Leon Timmermans, Michael G +Schwern, Nicholas Clark, Niko Tyni, Pino Toscano, Ricardo Signes, Salvador +FandiƱo, Samuel Thibault, Steve Hay, Tony Cook. +.PP +The list above is almost certainly incomplete as it is automatically generated +from version control history. In particular, it does not include the names of +the (very much appreciated) contributors who reported issues to the Perl bug +tracker. +.PP +Many of the changes included in this version originated in the \s-1CPAN\s0 modules +included in Perl's core. We're grateful to the entire \s-1CPAN\s0 community for +helping Perl to flourish. +.PP +For a more complete list of all of Perl's historical contributors, please see +the \fI\s-1AUTHORS\s0\fR file in the Perl source distribution. +.SH "Reporting Bugs" +.IX Header "Reporting Bugs" +If you find what you think is a bug, you might check the articles +recently posted to the comp.lang.perl.misc newsgroup and the perl +bug database at http://rt.perl.org/perlbug/ . There may also be +information at http://www.perl.org/ , the Perl Home Page. +.PP +If you believe you have an unreported bug, please run the perlbug +program included with your release. Be sure to trim your bug down +to a tiny but sufficient test case. Your bug report, along with the +output of \f(CW\*(C`perl \-V\*(C'\fR, will be sent off to perlbug@perl.org to be +analysed by the Perl porting team. +.PP +If the bug you are reporting has security implications, which make it +inappropriate to send to a publicly archived mailing list, then please send +it to perl5\-security\-report@perl.org. This points to a closed subscription +unarchived mailing list, which includes all the core committers, who be able +to help assess the impact of issues, figure out a resolution, and help +co-ordinate the release of patches to mitigate or fix the problem across all +platforms on which Perl is supported. Please only use this address for +security issues in the Perl core, not for modules independently +distributed on \s-1CPAN.\s0 +.SH "SEE ALSO" +.IX Header "SEE ALSO" +The \fIChanges\fR file for an explanation of how to view exhaustive details +on what changed. +.PP +The \fI\s-1INSTALL\s0\fR file for how to build Perl. +.PP +The \fI\s-1README\s0\fR file for general stuff. +.PP +The \fIArtistic\fR and \fICopying\fR files for copyright information. -- cgit v1.2.3