OBSOLETE Patch-ID# 146033-05


Download this patch from My Oracle Support

Your use of the firmware, software and any other materials contained in this update is subject to My Oracle Support Terms of Use, which may be viewed at My Oracle Support.
For further information on patching best practices and resources, please see the following links:
Copyright (c) 2012, Oracle and/or its affiliates. All rights reserved.

Keywords: security cgi apache carp cookie pretty util mod_perl perl safe.pm
Synopsis: Obsoleted by: 148562-04 SunOS 5.10_x86: perlbug patch
Date: Sep/28/2012


Install Requirements: NA

Solaris Release: 10_x86

SunOS Release: 5.10_x86

Unbundled Product:

Unbundled Release:

Xref: This patch available for SPARC as patch 146032

Topic: SunOS 5.10_x86: perlbug patch

Relevant Architectures: i386

Bugs fixed with this patch:

Sun CR # Bug #
628938615273214
662983615438587
666328815457964
675895315514869
693571015630238
696156715650133
700439115684950
700635715686623
711693615758320
711803815758955
712521815763251
718063615801213


Changes incorporated in this version: 7180636

Patches accumulated and obsoleted by this patch: 122240-03 138323-03 141553-04 146773-01 147017-01

Patches which conflict with this patch:

Patches required with this patch: 120012-14 (or greater)

Obsoleted by:

Files included with this patch:

/usr/perl5/5.6.1/bin/perlbug
/usr/perl5/5.6.1/lib/CGI.pm
/usr/perl5/5.6.1/lib/i86pc-solaris-64int/CORE/libperl.so.1
/usr/perl5/5.6.1/lib/i86pc-solaris-64int/CORE/patchlevel.h
/usr/perl5/5.6.1/lib/i86pc-solaris-64int/Safe.pm
/usr/perl5/5.6.1/lib/i86pc-solaris-64int/auto/File/Glob/Glob.so
/usr/perl5/5.6.1/lib/i86pc-solaris-64int/auto/Opcode/Opcode.so
/usr/perl5/5.8.4/bin/perlbug
/usr/perl5/5.8.4/lib/CGI.pm
/usr/perl5/5.8.4/lib/CGI/Apache.pm
/usr/perl5/5.8.4/lib/CGI/Carp.pm
/usr/perl5/5.8.4/lib/CGI/Cookie.pm
/usr/perl5/5.8.4/lib/CGI/Fast.pm
/usr/perl5/5.8.4/lib/CGI/Pretty.pm
/usr/perl5/5.8.4/lib/CGI/Push.pm
/usr/perl5/5.8.4/lib/CGI/Switch.pm
/usr/perl5/5.8.4/lib/CGI/Util.pm
/usr/perl5/5.8.4/lib/CGI/eg/clickable_image.cgi
/usr/perl5/5.8.4/lib/CGI/eg/frameset.cgi
/usr/perl5/5.8.4/lib/CGI/eg/internal_links.cgi
/usr/perl5/5.8.4/lib/CGI/eg/multiple_forms.cgi
/usr/perl5/5.8.4/lib/CGI/eg/nph-clock.cgi
/usr/perl5/5.8.4/lib/CGI/eg/popup.cgi
/usr/perl5/5.8.4/lib/Digest.pm
/usr/perl5/5.8.4/lib/i86pc-solaris-64int/CORE/libperl.so.1
/usr/perl5/5.8.4/lib/i86pc-solaris-64int/CORE/patchlevel.h
/usr/perl5/5.8.4/lib/i86pc-solaris-64int/Safe.pm
/usr/perl5/5.8.4/lib/i86pc-solaris-64int/Sys/Syslog.pm
/usr/perl5/5.8.4/lib/i86pc-solaris-64int/auto/File/Glob/Glob.so
/usr/perl5/5.8.4/lib/i86pc-solaris-64int/auto/MIME/Base64/Base64.so
/usr/perl5/5.8.4/lib/i86pc-solaris-64int/auto/Storable/Storable.so
/usr/perl5/5.8.4/lib/i86pc-solaris-64int/auto/Sys/Syslog/Syslog.so
/usr/perl5/5.8.4/lib/i86pc-solaris-64int/auto/re/re.so

Problem Description:

7180636 problem with Perl
 
(from 146033-04)
 
7125218 problem with Perl
 
(from 146033-03)
 
7116936 problem with Perl
7118038 problem with Perl
 
(from 146033-02)
 
        This revision accumulates generic Sustaining patch 141553-04
        into Solaris S10U10 update.
 
(from 146033-01)
 
        This revision accumulates generic Sustaining patch 141553-03
        into Solaris S10U10 update.
 
(from 141553-04)
 
7004391 CGI.pm needs update to filter newlines in headers (CVE-2010-2761, CVE-2010-4411)
 
(from 141553-03)
 
6961567 CVE-2010-1168 - Safe.pm 2.24 and earlier may allow attackers to break out of safe compartment
 
(from 141553-02)
 
6935710 patch 141552-01 causes an error when the Syslog Perl module is used
 
(from 141553-01)
 
	This revision accumulates generic Sustaining patch 138323-03
	into Solaris S10U8 update.
 
(from 138323-03)
 
6758953 Perl Sys::Syslog can log messages with wrong severity
 
(from 138323-02)
 
        This revision accumulates generic Sustaining patch 122240-03
        into Solaris S10U6 update.
 
(from 138323-01)
 
        This revision accumulates generic Sustaining patch 122240-02
        into Solaris S10U6 update.
 
(from 122240-03)
 
6629836 Perl 5.8 vulnerable to buffer overflow in regular expression engine
 
(from 122240-02)
 
6663288 update CGI.pm to latest version 3.33 to address various known bugs
 
(from 122240-01)
 
6289386 CGI.pm is incompatible with new Apache mod_perl library
 
(from 147017-01)
 
        This revision accumulates generic Sustaining patch 146773-01
        into Solaris S10U10 update.
 
(from 146773-01)
 
7006357 CVE-2010-1168 - Safe.pm 2.24 and earlier (Perl 5.6.1)


Patch Installation Instructions:
--------------------------------
 
Please refer to the man pages for instructions on using 'patchadd'
and 'patchrm' commands provided with Solaris.
 
The following example installs a patch to a standalone machine:
 
       example# patchadd /var/spool/patch/123456-07
 
The following example removes a patch from a standalone system:
 
       example# patchrm 123456-07
 
For additional examples please see the appropriate man pages. Any
other special or non-generic installation instructions should be
described below as special instructions.


Special Install Instructions:
-----------------------------
 
None.


README -- Last modified date: Friday, May 3, 2013