diff options
author | Abigail <abigail@abigail.be> | 2016-04-06 17:36:55 +0100 |
---|---|---|
committer | Steve Hay <steve.m.hay@googlemail.com> | 2016-04-06 17:37:10 +0100 |
commit | 2ef56a020786f675e920c377f636d076869ebe9c (patch) | |
tree | 2cdb6c8c6f41dfe8488180464ca711717b91cd24 | |
parent | 54a631c5fdee6f3ae0275313c8e09fadf369e19e (diff) | |
download | perl-2ef56a020786f675e920c377f636d076869ebe9c.tar.gz |
perldelta for various 5.23.9 changes
(manually cherry picked from commit 7d12a7395ed4377d6531130e7cfa743ad5b46530)
-rw-r--r-- | pod/perldelta.pod | 30 |
1 files changed, 30 insertions, 0 deletions
diff --git a/pod/perldelta.pod b/pod/perldelta.pod index 417eba9f92..6b84b6c266 100644 --- a/pod/perldelta.pod +++ b/pod/perldelta.pod @@ -57,6 +57,19 @@ This has been fixed by using umask 0177 instead. [perl #127322] Added validation that will detect both a short salt and invalid characters in the salt. L<[perl #126922]|https://rt.perl.org/Ticket/Display.html?id=126922> +=head2 Remove duplicate environment variables from C<environ> + +Previously, if an environment variable appeared more than once in +C<environ[]>, C<%ENV> would contain the last entry for that name, +while a typical C<getenv()> would return the first entry. We now +make sure C<%ENV> contains the same as what C<getenv> returns. + +Second, we remove duplicates from C<environ[]>, so if a setting +with that name is set in C<%ENV> we won't pass an unsafe value +to a child process. + +[CVE-2016-2381] + =head1 Incompatible Changes XXX For a release on a stable branch, this section aspires to be: @@ -462,6 +475,23 @@ or a C-level assert. [perl #126602], [perl #126193]. Avoid leaking memory when setting C<$ENV{foo}> on darwin. L<[perl #126240]|https://rt.perl.org/Ticket/Display.html?id=126240> +=item * + +Correctly raise an error when trying to compile patterns with +unterminated character classes while there are trailing backslashes. +[perl #126141]. + +=item * + +Handle C<NOTHING> regops and C<EXACTFU_SS> regops in C<make_trie> properly. +[perl #126206] + +=item * + +Only test C<semctl> if we have everything needed to use it. In a FreeBSD +the C<semctl> entry point may exist, but it can be disabled by policy. +[perl #127533] + =back =head1 Known Problems |