In perl.git, the branch maint-5.14 has been updated <http://perl5.git.perl.org/perl.git/commitdiff/e0f008015d0445a286c2ce3e05dec1b0d63ada2d?hp=30ec7de223b6ce7fa555cc898b5f2a8c8e031710>
- Log ----------------------------------------------------------------- commit e0f008015d0445a286c2ce3e05dec1b0d63ada2d Author: David Mitchell <[email protected]> Date: Thu Mar 7 15:30:21 2013 +0000 bump Module::Corelist version M dist/Module-CoreList/lib/Module/CoreList.pm M pod/perldelta.pod commit 7acb5d86d06c0b4bfa650e6347d3515bc49e7b27 Author: David Mitchell <[email protected]> Date: Thu Mar 7 15:23:09 2013 +0000 bump version to RC2 M patchlevel.h commit 2a3ae61a6c3293988144917e6e9e80b3fa710900 Author: David Mitchell <[email protected]> Date: Thu Mar 7 15:20:49 2013 +0000 update Module::CoreList for RC2 M dist/Module-CoreList/lib/Module/CoreList.pm commit eb3bf31a1af3a188f32c9848c052570678dfe00c Author: David Mitchell <[email protected]> Date: Thu Mar 7 14:21:54 2013 +0000 update AUTHORS M AUTHORS commit d8edf93c10267990cb6471d9626df21a867a9867 Author: David Mitchell <[email protected]> Date: Thu Mar 7 14:06:11 2013 +0000 update perldelta with Encode fix M pod/perldelta.pod commit cabaa53059292b516f879f224fd9dcc60117cc8f Author: David Mitchell <[email protected]> Date: Thu Mar 7 14:01:01 2013 +0000 bump version number of Encode to _02 M cpan/Encode/Encode.pm commit 5814803a8fa15d6b5fd483efdaf849a7166f9ac4 Author: chansen <[email protected]> Date: Sun Mar 3 22:43:53 2013 +0100 Encode: Fixed a memory leak that occurred in the UTF-8 encoding. The decode and encode methods allocated a SV for the result, this SV is passed to the process_utf8() function which may croak() if the CHECK flag has FB_CROAK set. M cpan/Encode/Encode.xs ----------------------------------------------------------------------- Summary of changes: AUTHORS | 1 + cpan/Encode/Encode.pm | 2 +- cpan/Encode/Encode.xs | 8 ++++---- dist/Module-CoreList/lib/Module/CoreList.pm | 6 +++--- patchlevel.h | 2 +- pod/perldelta.pod | 15 +++++++++++---- 6 files changed, 21 insertions(+), 13 deletions(-) diff --git a/AUTHORS b/AUTHORS index d1c0939..5f8b634 100644 --- a/AUTHORS +++ b/AUTHORS @@ -207,6 +207,7 @@ Chris Tubutis <[email protected]> Chris Wick <[email protected]> Chris Williams <[email protected]> Christian Burger <[email protected]> +Christian Hansen <[email protected]> Christian Kirsch <[email protected]> Christian Winter <[email protected]> Christoph Lamprecht <[email protected]> diff --git a/cpan/Encode/Encode.pm b/cpan/Encode/Encode.pm index a8f0634..0047ce6 100644 --- a/cpan/Encode/Encode.pm +++ b/cpan/Encode/Encode.pm @@ -4,7 +4,7 @@ package Encode; use strict; use warnings; -our $VERSION = sprintf "%d.%02d_01", q$Revision: 2.42 $ =~ /(\d+)/g; +our $VERSION = sprintf "%d.%02d_02", q$Revision: 2.42 $ =~ /(\d+)/g; sub DEBUG () { 0 } use XSLoader (); XSLoader::load( __PACKAGE__, $VERSION ); diff --git a/cpan/Encode/Encode.xs b/cpan/Encode/Encode.xs index 723170c..4fa4ac3 100644 --- a/cpan/Encode/Encode.xs +++ b/cpan/Encode/Encode.xs @@ -440,7 +440,6 @@ CODE: if (src == &PL_sv_undef || SvROK(src)) src = sv_2mortal(newSV(0)); s = (U8 *) SvPV(src, slen); e = (U8 *) SvEND(src); - dst = newSV(slen>0?slen:1); /* newSV() abhors 0 -- inaba */ check = SvROK(check_sv) ? ENCODE_PERLQQ|ENCODE_LEAVE_SRC : SvIV(check_sv); /* * PerlIO check -- we assume the object is of PerlIO if renewed @@ -471,6 +470,7 @@ CODE: } } + dst = sv_2mortal(newSV(slen>0?slen:1)); /* newSV() abhors 0 -- inaba */ s = process_utf8(aTHX_ dst, s, e, check_sv, 0, strict_utf8(aTHX_ obj), renewed); /* Clear out translated part of source unless asked not to */ @@ -482,7 +482,7 @@ CODE: SvCUR_set(src, slen); } SvUTF8_on(dst); - ST(0) = sv_2mortal(dst); + ST(0) = dst; XSRETURN(1); } @@ -504,7 +504,7 @@ CODE: if (src == &PL_sv_undef || SvROK(src)) src = sv_2mortal(newSV(0)); s = (U8 *) SvPV(src, slen); e = (U8 *) SvEND(src); - dst = newSV(slen>0?slen:1); /* newSV() abhors 0 -- inaba */ + dst = sv_2mortal(newSV(slen>0?slen:1)); /* newSV() abhors 0 -- inaba */ if (SvUTF8(src)) { /* Already encoded */ if (strict_utf8(aTHX_ obj)) { @@ -543,7 +543,7 @@ CODE: } SvPOK_only(dst); SvUTF8_off(dst); - ST(0) = sv_2mortal(dst); + ST(0) = dst; XSRETURN(1); } diff --git a/dist/Module-CoreList/lib/Module/CoreList.pm b/dist/Module-CoreList/lib/Module/CoreList.pm index e32907c..dea12bf 100644 --- a/dist/Module-CoreList/lib/Module/CoreList.pm +++ b/dist/Module-CoreList/lib/Module/CoreList.pm @@ -2,7 +2,7 @@ package Module::CoreList; use strict; use vars qw/$VERSION %released %version %families %upstream %bug_tracker %deprecated/; -$VERSION = '2.49_05'; +$VERSION = '2.49_06'; =head1 NAME @@ -26473,7 +26473,7 @@ for my $version ( sort { $a <=> $b } keys %released ) { 'DirHandle' => '1.04', 'Dumpvalue' => '1.16', 'DynaLoader' => '1.13', - 'Encode' => '2.42_01', + 'Encode' => '2.42_02', 'Encode::Alias' => '2.13', 'Encode::Byte' => '2.04', 'Encode::CJKConstants' => '2.02', @@ -26710,7 +26710,7 @@ for my $version ( sort { $a <=> $b } keys %released ) { 'Module::Build::PodParser'=> '0.3800', 'Module::Build::Version'=> '0.87', 'Module::Build::YAML' => '1.41', - 'Module::CoreList' => '2.49_05', + 'Module::CoreList' => '2.49_06', 'Module::Load' => '0.18', 'Module::Load::Conditional'=> '0.44', 'Module::Loaded' => '0.06', diff --git a/patchlevel.h b/patchlevel.h index 7d8681d..6a41ba2 100644 --- a/patchlevel.h +++ b/patchlevel.h @@ -133,7 +133,7 @@ hunk. # endif static const char * const local_patches[] = { NULL - ,"RC1" + ,"RC2" #ifdef PERL_GIT_UNCOMMITTED_CHANGES ,"uncommitted-changes" #endif diff --git a/pod/perldelta.pod b/pod/perldelta.pod index 4f55fde..b4b14f6 100644 --- a/pod/perldelta.pod +++ b/pod/perldelta.pod @@ -19,9 +19,9 @@ No changes since 5.14.0. =head1 Security -This release contains one major and a number of minor security fixes. -The latter are included mainly to allow the test suite to pass cleanly -with the clang compiler's address sanitizer facility. +This release contains one major, and medium, and a number of minor +security fixes. The latter are included mainly to allow the test suite to +pass cleanly with the clang compiler's address sanitizer facility. =head2 CVE-2013-1667: memory exhaustion with arbitrary hash keys @@ -31,6 +31,11 @@ and CPU, and thus possibly to achieve a Denial-of-Service. This problem has been fixed. +=head2 memory leak in Encode + +The UTF-8 encoding implementation in Encode.xs had a memory leak which has been +fixed. + =head2 [perl #111594] Socket::unpack_sockaddr_un heap-buffer-overflow A read buffer overflow could occur when copying C<sockaddr> buffers. @@ -103,7 +108,9 @@ L</Security> (version numbers have not changed): =back -L<Module::CoreList> has been updated to version 2.49_05 to add data for +L<Encode> has been upgraded from version 2.42_01 to version 2.42_02. + +L<Module::CoreList> has been updated to version 2.49_06 to add data for this release. =head2 Removed Modules and Pragmata -- Perl5 Master Repository
