Branch: refs/heads/maint-5.28 Home: https://github.com/Perl/perl5 Commit: 1aef74e6bc0269fcd6ad7669fcd58488ffaf736f https://github.com/Perl/perl5/commit/1aef74e6bc0269fcd6ad7669fcd58488ffaf736f Author: John Lightsey <j...@cpanel.net> Date: 2020-05-17 (Sun, 17 May 2020)
Changed paths: M regcomp.c Log Message: ----------- regcomp.c: Prevent integer overflow from nested regex quantifiers. (CVE-2020-10543) On 32bit systems the size calculations for nested regular expression quantifiers could overflow causing heap memory corruption. Fixes: Perl/perl5-security#125 (cherry picked from commit 208dea486fa24081cbc0cf05fa5a15c802e2bc68) Commit: 011cd8913d3a230b8d30b156b848585c7c4c1597 https://github.com/Perl/perl5/commit/011cd8913d3a230b8d30b156b848585c7c4c1597 Author: Hugo van der Sanden <h...@crypt.org> Date: 2020-05-17 (Sun, 17 May 2020) Changed paths: M embed.fnc M embed.h M proto.h M regcomp.c Log Message: ----------- study_chunk: extract rck_elide_nothing (CVE-2020-10878) (cherry picked from commit a3a7598c8ec6efb0eb9c0b786d80c4d2a3751b70) Commit: 3f4ba871d2d397dcd4386ed75e05353c36135c29 https://github.com/Perl/perl5/commit/3f4ba871d2d397dcd4386ed75e05353c36135c29 Author: Hugo van der Sanden <h...@crypt.org> Date: 2020-05-17 (Sun, 17 May 2020) Changed paths: M embed.fnc M embed.h M proto.h M regcomp.c M t/re/pat.t Log Message: ----------- study_chunk: avoid mutating regexp program within GOSUB gh16947 and gh17743: studying GOSUB may restudy in an inner call (via a mix of recursion and enframing) something that an outer call is in the middle of looking at. Let the outer frame deal with it. (CVE-2020-12723) (cherry picked from commit c031e3ec7c713077659f5f7dc6638d926c69d7b2) Commit: 4a1a3c95f350ce86b301c73bd257b07afec8fb59 https://github.com/Perl/perl5/commit/4a1a3c95f350ce86b301c73bd257b07afec8fb59 Author: Steve Hay <steve.m....@googlemail.com> Date: 2020-05-17 (Sun, 17 May 2020) Changed paths: M pod/perldelta.pod Log Message: ----------- perldelta - Document security fixes Commit: 2d489145cbf021228a2a819dab4208e16d1049c6 https://github.com/Perl/perl5/commit/2d489145cbf021228a2a819dab4208e16d1049c6 Author: Steve Hay <steve.m....@googlemail.com> Date: 2020-05-17 (Sun, 17 May 2020) Changed paths: M pod/perlhist.pod Log Message: ----------- 5.28.3-RC1 tomorrow Commit: 7cc84caa6dab3ed5d7d4f2743bb10a0b8bc4593d https://github.com/Perl/perl5/commit/7cc84caa6dab3ed5d7d4f2743bb10a0b8bc4593d Author: Steve Hay <steve.m....@googlemail.com> Date: 2020-05-17 (Sun, 17 May 2020) Changed paths: M pod/perldelta.pod Log Message: ----------- Finalize perldelta Commit: 8dcf04cc1c3603b6c3092cc101631947df0685a3 https://github.com/Perl/perl5/commit/8dcf04cc1c3603b6c3092cc101631947df0685a3 Author: Steve Hay <steve.m....@googlemail.com> Date: 2020-05-17 (Sun, 17 May 2020) Changed paths: M META.json M patchlevel.h Log Message: ----------- Bump to RC1 and update META.json Commit: 7b3f987657fcad311a2809e21cd786b53218007a https://github.com/Perl/perl5/commit/7b3f987657fcad311a2809e21cd786b53218007a Author: Steve Hay <steve.m....@googlemail.com> Date: 2020-05-29 (Fri, 29 May 2020) Changed paths: M META.json M patchlevel.h Log Message: ----------- Disarm patchlevel.h and regen META.json Commit: d68385741a9b1789d926d655139d3976b7a13249 https://github.com/Perl/perl5/commit/d68385741a9b1789d926d655139d3976b7a13249 Author: Steve Hay <steve.m....@googlemail.com> Date: 2020-05-29 (Fri, 29 May 2020) Changed paths: M pod/perldelta.pod Log Message: ----------- perldelta - Acknowledge discoverers of security vulnerabilities Commit: ae49126f3ca2352fb49d7121a769189bf31e6f72 https://github.com/Perl/perl5/commit/ae49126f3ca2352fb49d7121a769189bf31e6f72 Author: Steve Hay <steve.m....@googlemail.com> Date: 2020-05-29 (Fri, 29 May 2020) Changed paths: M pod/perlhist.pod Log Message: ----------- 5.28.3 on Monday Compare: https://github.com/Perl/perl5/compare/304732faad5e...ae49126f3ca2