summaryrefslogtreecommitdiffstats
path: root/meta/recipes-devtools/perl/perl_5.36.1.bb
Commit message (Collapse)AuthorAgeFilesLines
* perl: Fix CVE-2023-31486Soumya2023-07-211-0/+2
| | | | | | | | | | | | | | | | | | | HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS configuration where users must opt in to verify certificates. References: https://nvd.nist.gov/vuln/detail/CVE-2023-31486 Upstream patches: https://github.com/chansen/p5-http-tiny/commit/77f557ef84698efeb6eed04e4a9704eaf85b741d https://github.com/chansen/p5-http-tiny/commit/a22785783b17cbaa28afaee4a024d81a1903701d (From OE-Core rev: e021fcc420b15d96b32f77f2b38324651dbd454c) Signed-off-by: Soumya <soumya.sambu@windriver.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* perl: fix CVE-2023-31484Soumya2023-06-151-0/+1
| | | | | | | | | | | CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS. (From OE-Core rev: c87f6b088105676cd2e6216b1a9c62e7e754347c) Signed-off-by: Soumya <soumya.sambu@windriver.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* perl: update 5.36.0 -> 5.36.1Alexander Kanavin2023-05-221-0/+417
Drop gcc 12 patch, as upstream rejected it, and then (presumably) fixed gcc 12 issues differently. (From OE-Core rev: 0057ac8ef6ebc5a8f32c62de0d713b12eb4d48ee) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2024-07-03 17:51:35 +0000