Advisories ยป MGASA-2016-0027

Updated perl and perl-PathTools packages fix security vulnerability

Publication date: 20 Jan 2016
Type: security
Affected Mageia releases : 5
CVE: CVE-2015-8607

Description

It was reported that File::Spec::canonpath() routine returns untainted strings
even if passed tainted input.  This defect undermines the guarantee of taint
propagation, which is sometimes used to ensure that unvalidated user input does
not reach sensitive code (CVE-2015-8607).
                

References

SRPMS

5/core