Hello community,
here is the log from the commit of package perl-Parse-PMFile for
openSUSE:Factory checked in at 2020-12-16 11:00:40
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/perl-Parse-PMFile (Old)
and /work/SRC/openSUSE:Factory/.perl-Parse-PMFile.new.2328 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "perl-Parse-PMFile"
Wed Dec 16 11:00:40 2020 rev:3 rq:856006 version:0.43
Changes:
--------
--- /work/SRC/openSUSE:Factory/perl-Parse-PMFile/perl-Parse-PMFile.changes
2019-11-26 16:53:15.944229749 +0100
+++
/work/SRC/openSUSE:Factory/.perl-Parse-PMFile.new.2328/perl-Parse-PMFile.changes
2020-12-16 11:00:44.283584661 +0100
@@ -1,0 +2,10 @@
+Sat Dec 12 03:08:36 UTC 2020 - Tina Müller <timueller+p...@suse.de>
+
+- updated to 0.43
+ see /usr/share/doc/packages/perl-Parse-PMFile/Changes
+
+ 0.43 2020/12/12
+ - Avoid instantiating `Safe` compartment if operating in "unsafe" mode.
+ (GH#12; bleargh45++)
+
+-------------------------------------------------------------------
Old:
----
Parse-PMFile-0.42.tar.gz
New:
----
Parse-PMFile-0.43.tar.gz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ perl-Parse-PMFile.spec ++++++
--- /var/tmp/diff_new_pack.VaLqFm/_old 2020-12-16 11:00:45.015585380 +0100
+++ /var/tmp/diff_new_pack.VaLqFm/_new 2020-12-16 11:00:45.019585384 +0100
@@ -1,7 +1,7 @@
#
# spec file for package perl-Parse-PMFile
#
-# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2020 SUSE LLC
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -17,13 +17,13 @@
Name: perl-Parse-PMFile
-Version: 0.42
+Version: 0.43
Release: 0
%define cpan_name Parse-PMFile
Summary: Parses .pm file as PAUSE does
License: Artistic-1.0 OR GPL-1.0-or-later
Group: Development/Libraries/Perl
-Url: https://metacpan.org/release/%{cpan_name}
+URL: https://metacpan.org/release/%{cpan_name}
Source0:
https://cpan.metacpan.org/authors/id/I/IS/ISHIGAKI/%{cpan_name}-%{version}.tar.gz
Source1: cpanspec.yml
BuildArch: noarch
++++++ Parse-PMFile-0.42.tar.gz -> Parse-PMFile-0.43.tar.gz ++++++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/Parse-PMFile-0.42/Changes
new/Parse-PMFile-0.43/Changes
--- old/Parse-PMFile-0.42/Changes 2019-11-09 04:10:57.000000000 +0100
+++ new/Parse-PMFile-0.43/Changes 2020-12-12 00:34:03.000000000 +0100
@@ -1,5 +1,9 @@
Revision history for Parse-PMFile
+0.43 2020/12/12
+ - Avoid instantiating `Safe` compartment if operating in "unsafe" mode.
+ (GH#12; bleargh45++)
+
0.42 2019/11/09
- no code changes
- explicitly declared ExtUtils::MakeMaker::CPANfile as a configure
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/Parse-PMFile-0.42/META.json
new/Parse-PMFile-0.43/META.json
--- old/Parse-PMFile-0.42/META.json 2019-11-09 04:11:30.000000000 +0100
+++ new/Parse-PMFile-0.43/META.json 2020-12-12 00:34:32.000000000 +0100
@@ -52,6 +52,6 @@
"url" : "https://github.com/charsbar/Parse-PMFile";
}
},
- "version" : "0.42",
+ "version" : "0.43",
"x_serialization_backend" : "JSON::PP version 4.00"
}
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/Parse-PMFile-0.42/META.yml
new/Parse-PMFile-0.43/META.yml
--- old/Parse-PMFile-0.42/META.yml 2019-11-09 04:11:30.000000000 +0100
+++ new/Parse-PMFile-0.43/META.yml 2020-12-12 00:34:32.000000000 +0100
@@ -27,5 +27,5 @@
version: '0.83'
resources:
repository: https://github.com/charsbar/Parse-PMFile
-version: '0.42'
+version: '0.43'
x_serialization_backend: 'CPAN::Meta::YAML version 0.012'
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/Parse-PMFile-0.42/lib/Parse/PMFile.pm
new/Parse-PMFile-0.43/lib/Parse/PMFile.pm
--- old/Parse-PMFile-0.42/lib/Parse/PMFile.pm 2019-11-09 04:11:04.000000000
+0100
+++ new/Parse-PMFile-0.43/lib/Parse/PMFile.pm 2020-12-12 00:33:08.000000000
+0100
@@ -10,7 +10,7 @@
use version ();
use File::Spec ();
-our $VERSION = '0.42';
+our $VERSION = '0.43';
our $VERBOSE = 0;
our $ALLOW_DEV_VERSION = 0;
our $FORK = 0;
@@ -208,28 +208,31 @@
} else {
# XXX Limit Resources too
- my($comp) = Safe->new;
+ my $comp;
my $eval = qq{
local(\$^W) = 0;
Parse::PMFile::_parse_version_safely("$pmcp");
};
- $comp->permit("entereval"); # for MBARBON/Module-Info-0.30.tar.gz
- $comp->share("*Parse::PMFile::_parse_version_safely");
- $comp->share("*version::new");
- $comp->share("*version::numify");
- $comp->share_from('main', ['*version::',
- '*charstar::',
- '*Exporter::',
- '*DynaLoader::']);
- $comp->share_from('version', ['&qv']);
- $comp->permit(":base_math"); # atan2 (Acme-Pi)
- # $comp->permit("require"); # no strict!
- $comp->deny(qw/enteriter iter unstack goto/); # minimum protection
against Acme::BadExample
+ unless ($self->{UNSAFE} || $UNSAFE) {
+ $comp = Safe->new;
+ $comp->permit("entereval"); # for
MBARBON/Module-Info-0.30.tar.gz
+ $comp->share("*Parse::PMFile::_parse_version_safely");
+ $comp->share("*version::new");
+ $comp->share("*version::numify");
+ $comp->share_from('main', ['*version::',
+ '*charstar::',
+ '*Exporter::',
+ '*DynaLoader::']);
+ $comp->share_from('version', ['&qv']);
+ $comp->permit(":base_math"); # atan2 (Acme-Pi)
+ # $comp->permit("require"); # no strict!
+ $comp->deny(qw/enteriter iter unstack goto/); # minimum
protection against Acme::BadExample
+ }
version->import('qv') if $self->{UNSAFE} || $UNSAFE;
{
no strict;
- $v = ($self->{UNSAFE} || $UNSAFE) ? eval $eval :
$comp->reval($eval);
+ $v = $comp ? $comp->reval($eval) : eval $eval;
}
if ($@){ # still in the child process, out of Safe::reval
my $err = $@;
@@ -239,7 +242,7 @@
local($^W) = 0;
my ($sigil, $vstr) = ($1, $3);
$self->_restore_overloaded_stuff(1) if $err->{line} =~
/use\s+version\b|version\->|qv\(/;
- $v = ($self->{UNSAFE} || $UNSAFE) ? eval $vstr :
$comp->reval($vstr);
+ $v = $comp ? $comp->reval($vstr) : eval $vstr;
$v = $$v if $sigil eq '*' && ref $v;
}
if ($@ or !$v) {
@@ -267,7 +270,7 @@
utf8::encode($v);
# undefine empty $v as if read from the tmpfile
$v = undef if defined $v && !length $v;
- $comp->erase;
+ $comp->erase if ($comp);
$self->_restore_overloaded_stuff;
}
}
_______________________________________________
openSUSE Commits mailing list -- commit@lists.opensuse.org
To unsubscribe, email commit-le...@lists.opensuse.org
List Netiquette: https://en.opensuse.org/openSUSE:Mailing_list_netiquette
List Archives:
https://lists.opensuse.org/archives/list/commit@lists.opensuse.org
