2 files changed, 12 insertions, 0 deletions

diff --git a/pod/perldiag.pod b/pod/perldiag.pod
index 442106450f..aae2dd3b08 100644
--- a/pod/perldiag.pod
+++ b/pod/perldiag.pod
@@ -2188,6 +2188,14 @@ C<$ENV{ENV}>, C<$ENV{BASH_ENV}> or C<$ENV{TERM}> are derived from data
 supplied (or potentially supplied) by the user.  The script must set
 the path to a known value, using trustworthy data.  See L<perlsec>.
 
+=item Insecure user-defined property %s
+
+(F) Perl detected tainted data when trying to compile a regular
+expression that contains a call to a user-defined character property
+function, i.e. C<\p{IsFoo}> or C<\p{InFoo}>.
+See L<perlunicode/User-Defined Character Properties> and L<perlsec>.
+
+
 =item Integer overflow in format string for %s
 
 (F) The indexes and widths specified in the format string of C<printf()>
diff --git a/pod/perlunicode.pod b/pod/perlunicode.pod
index edb722d97f..97ac89e04d 100644
--- a/pod/perlunicode.pod
+++ b/pod/perlunicode.pod
@@ -801,6 +801,10 @@ the value of the flag, and one set of values will immutably be in effect
 for all case-sensitive matches; the other set for all case-insensitive
 matches.
 
+Note that  if the regular expression is tainted, then perl will die rather
+than calling the subroutine, where the name of the subroutine is
+determined by the tainted data.
+
 The subroutines must return a specially-formatted string, with one
 or more newline-separated lines.  Each line must be one of the following: