In perl.git, the branch blead has been updated <http://perl5.git.perl.org/perl.git/commitdiff/a5caed3eaae7519239a85d70868b2ba949bcf87c?hp=87af396a675055d22d613ea0124887b7705247ab>
- Log ----------------------------------------------------------------- commit a5caed3eaae7519239a85d70868b2ba949bcf87c Author: Dominic Hargreaves <d...@earth.li> Date: Sat Nov 10 15:13:35 2012 +0000 Add the 5.12.5 perldelta ----------------------------------------------------------------------- Summary of changes: MANIFEST | 1 + pod/perl.pod | 1 + pod/perl5125delta.pod | 241 +++++++++++++++++++++++++++++++++++++++++++++++++ win32/pod.mak | 4 + 4 files changed, 247 insertions(+), 0 deletions(-) create mode 100644 pod/perl5125delta.pod diff --git a/MANIFEST b/MANIFEST index e206c31..f99c703 100644 --- a/MANIFEST +++ b/MANIFEST @@ -4664,6 +4664,7 @@ pod/perl5121delta.pod Perl changes in version 5.12.1 pod/perl5122delta.pod Perl changes in version 5.12.2 pod/perl5123delta.pod Perl changes in version 5.12.3 pod/perl5124delta.pod Perl changes in version 5.12.4 +pod/perl5125delta.pod Perl changes in version 5.12.5 pod/perl5140delta.pod Perl changes in version 5.14.0 pod/perl5141delta.pod Perl changes in version 5.14.1 pod/perl5142delta.pod Perl changes in version 5.14.2 diff --git a/pod/perl.pod b/pod/perl.pod index 11dba98..a1bac94 100644 --- a/pod/perl.pod +++ b/pod/perl.pod @@ -192,6 +192,7 @@ aux a2p c2ph h2ph h2xs perlbug pl2pm pod2html pod2man s2p splain xsubpp perl5142delta Perl changes in version 5.14.2 perl5141delta Perl changes in version 5.14.1 perl5140delta Perl changes in version 5.14.0 + perl5125delta Perl changes in version 5.12.5 perl5124delta Perl changes in version 5.12.4 perl5123delta Perl changes in version 5.12.3 perl5122delta Perl changes in version 5.12.2 diff --git a/pod/perl5125delta.pod b/pod/perl5125delta.pod new file mode 100644 index 0000000..4564a42 --- /dev/null +++ b/pod/perl5125delta.pod @@ -0,0 +1,241 @@ +=encoding utf8 + +=head1 NAME + +perldelta - what is new for perl v5.12.5 + +=head1 DESCRIPTION + +This document describes differences between the 5.12.4 release and +the 5.12.5 release. + +If you are upgrading from an earlier release such as 5.12.3, first read +L<perl5124delta>, which describes differences between 5.12.3 and +5.12.4. + +=head1 Security + +=head2 C<Encode> decode_xs n-byte heap-overflow (CVE-2011-2939) + +A bug in C<Encode> could, on certain inputs, cause the heap to overflow. +This problem has been corrected. Bug reported by Robert Zacek. + +=head2 C<File::Glob::bsd_glob()> memory error with GLOB_ALTDIRFUNC (CVE-2011-2728). + +Calling C<File::Glob::bsd_glob> with the unsupported flag GLOB_ALTDIRFUNC would +cause an access violation / segfault. A Perl program that accepts a flags value from +an external source could expose itself to denial of service or arbitrary code +execution attacks. There are no known exploits in the wild. The problem has been +corrected by explicitly disabling all unsupported flags and setting unused function +pointers to null. Bug reported by Clément Lecigne. + +=head2 Heap buffer overrun in 'x' string repeat operator (CVE-2012-5195) + +Poorly written perl code that allows an attacker to specify the count to +perl's 'x' string repeat operator can already cause a memory exhaustion +denial-of-service attack. A flaw in versions of perl before 5.15.5 can +escalate that into a heap buffer overrun; coupled with versions of glibc +before 2.16, it possibly allows the execution of arbitrary code. + +This problem has been fixed. + +=head1 Incompatible Changes + +There are no changes intentionally incompatible with 5.12.4. If any +exist, they are bugs and reports are welcome. + +=head1 Modules and Pragmata + +=head2 Updated Modules + +=head3 L<B::Concise> + +L<B::Concise> no longer produces mangled output with the B<-tree> option +[perl #80632]. + +=head3 L<charnames> + +A regression introduced in Perl 5.8.8 has been fixed, that caused +C<charnames::viacode(0)> to return C<undef> instead of the string "NULL" +[perl #72624]. + +=head3 L<Encode> has been upgraded from version 2.39 to version 2.39_01. + +See L</Security>. + +=head3 L<File::Glob> has been upgraded from version 1.07 to version 1.07_01. + +See L</Security>. + +=head3 L<Unicode::UCD> + +The documentation for the C<upper> function now actually says "upper", not +"lower". + +=head3 L<Module::CoreList> + +L<Module::CoreList> has been updated to version 2.50_02 to add data for +this release. + +=head1 Changes to Existing Documentation + +=head2 L<perlebcdic> + +The L<perlebcdic> document contains a helpful table to use in C<tr///> to +convert between EBCDIC and Latin1/ASCII. Unfortunately, the table was the +inverse of the one it describes. This has been corrected. + +=head2 L<perlunicode> + +The section on +L<User-Defined Case Mappings|perlunicode/User-Defined Case Mappings> had +some bad markup and unclear sentences, making parts of it unreadable. This +has been rectified. + +=head2 L<perluniprops> + +This document has been corrected to take non-ASCII platforms into account. + +=head1 Installation and Configuration Improvements + +=head2 Platform Specific Changes + +=over 4 + +=item Mac OS X + +There have been configuration and test fixes to make Perl build cleanly on +Lion and Mountain Lion. + +=item NetBSD + +The NetBSD hints file was corrected to be compatible with NetBSD 6.* + +=back + +=head1 Selected Bug Fixes + +=over 4 + +=item * + +C<chop> now correctly handles characters above "\x{7fffffff}" +[perl #73246]. + +=item * + +C<< ($<,$>) = (...) >> stopped working properly in 5.12.0. It is supposed +to make a single C<setreuid()> call, rather than calling C<setruid()> and +C<seteuid()> separately. Consequently it did not work properly. This has +been fixed [perl #75212]. + +=item * + +Fixed a regression of kill() when a match variable is used for the +process ID to kill [perl #75812]. + +=item * + +C<UNIVERSAL::VERSION> no longer leaks memory. It started leaking in Perl +5.10.0. + +=item * + +The C-level C<my_strftime> functions no longer leaks memory. This fixes a +memory leak in C<POSIX::strftime> [perl #73520]. + +=item * + +C<caller> no longer leaks memory when called from the DB package if +C<@DB::args> was assigned to after the first call to C<caller>. L<Carp> +was triggering this bug [perl #97010]. + +=item * + +Passing to C<index> an offset beyond the end of the string when the string +is encoded internally in UTF8 no longer causes panics [perl #75898]. + +=item * + +Syntax errors in C<< (?{...}) >> blocks in regular expressions no longer +cause panic messages [perl #2353]. + +=item * + +Perl 5.10.0 introduced some faulty logic that made "U*" in the middle of +a pack template equivalent to "U0" if the input string was empty. This has +been fixed [perl #90160]. + +=back + +=head1 Errata + +=head2 split() and C<@_> + +split() no longer modifies C<@_> when called in scalar or void context. +In void context it now produces a "Useless use of split" warning. +This is actually a change introduced in perl 5.12.0, but it was missed from +that release's L<perl5120delta>. + +=head1 Acknowledgements + +Perl 5.12.5 represents approximately 17 months of development since Perl 5.12.4 +and contains approximately 1,900 lines of changes across 64 files from 18 +authors. + +Perl continues to flourish into its third decade thanks to a vibrant community +of users and developers. The following people are known to have contributed the +improvements that became Perl 5.12.5: + +Andy Dougherty, Chris 'BinGOs' Williams, Craig A. Berry, David Mitchell, +Dominic Hargreaves, Father Chrysostomos, Florian Ragwitz, George Greer, Goro +Fuji, Jesse Vincent, Karl Williamson, Leon Brocard, Nicholas Clark, Rafael +Garcia-Suarez, Reini Urban, Ricardo Signes, Steve Hay, Tony Cook. + +The list above is almost certainly incomplete as it is automatically generated +from version control history. In particular, it does not include the names of +the (very much appreciated) contributors who reported issues to the Perl bug +tracker. + +Many of the changes included in this version originated in the CPAN modules +included in Perl's core. We're grateful to the entire CPAN community for +helping Perl to flourish. + +For a more complete list of all of Perl's historical contributors, please see +the F<AUTHORS> file in the Perl source distribution. + +=head1 Reporting Bugs + +If you find what you think is a bug, you might check the articles +recently posted to the comp.lang.perl.misc newsgroup and the perl +bug database at http://rt.perl.org/perlbug/ . There may also be +information at http://www.perl.org/ , the Perl Home Page. + +If you believe you have an unreported bug, please run the B<perlbug> +program included with your release. Be sure to trim your bug down +to a tiny but sufficient test case. Your bug report, along with the +output of C<perl -V>, will be sent off to perl...@perl.org to be +analysed by the Perl porting team. + +If the bug you are reporting has security implications, which make it +inappropriate to send to a publicly archived mailing list, then please send +it to perl5-security-rep...@perl.org. This points to a closed subscription +unarchived mailing list, which includes all the core committers, who be able +to help assess the impact of issues, figure out a resolution, and help +co-ordinate the release of patches to mitigate or fix the problem across all +platforms on which Perl is supported. Please only use this address for +security issues in the Perl core, not for modules independently +distributed on CPAN. + +=head1 SEE ALSO + +The F<Changes> file for an explanation of how to view exhaustive details +on what changed. + +The F<INSTALL> file for how to build Perl. + +The F<README> file for general stuff. + +The F<Artistic> and F<Copying> files for copyright information. + +=cut diff --git a/win32/pod.mak b/win32/pod.mak index 678e273..5332aef 100644 --- a/win32/pod.mak +++ b/win32/pod.mak @@ -23,6 +23,7 @@ POD = perl.pod \ perl5122delta.pod \ perl5123delta.pod \ perl5124delta.pod \ + perl5125delta.pod \ perl5140delta.pod \ perl5141delta.pod \ perl5142delta.pod \ @@ -151,6 +152,7 @@ MAN = perl.man \ perl5122delta.man \ perl5123delta.man \ perl5124delta.man \ + perl5125delta.man \ perl5140delta.man \ perl5141delta.man \ perl5142delta.man \ @@ -279,6 +281,7 @@ HTML = perl.html \ perl5122delta.html \ perl5123delta.html \ perl5124delta.html \ + perl5125delta.html \ perl5140delta.html \ perl5141delta.html \ perl5142delta.html \ @@ -407,6 +410,7 @@ TEX = perl.tex \ perl5122delta.tex \ perl5123delta.tex \ perl5124delta.tex \ + perl5125delta.tex \ perl5140delta.tex \ perl5141delta.tex \ perl5142delta.tex \ -- Perl5 Master Repository