Bug#1102984: unblock/preapproval: perl/5.40.1-3 CVE-2024-56406

To: Sebastian Ramacher <sramacher@debian.org>
Cc: 1102984@bugs.debian.org
Subject: Bug#1102984: unblock/preapproval: perl/5.40.1-3 CVE-2024-56406
From: Niko Tyni <ntyni@debian.org>
Date: Sun, 13 Apr 2025 16:59:41 +0300
Message-id: <[🔎] Z_vDTXnHj9SHpbao@birgitta.local.invalid>
Reply-to: Niko Tyni <ntyni@debian.org>, 1102984@bugs.debian.org
In-reply-to: <[🔎] Z_vBVRPq2olAPYjW@ramacher.at>
References: <[🔎] 174455116154.7716.3915477658379571518.reportbug@birgitta.local.invalid> <[🔎] Z_vBVRPq2olAPYjW@ramacher.at> <[🔎] 174455116154.7716.3915477658379571518.reportbug@birgitta.local.invalid>

On Sun, Apr 13, 2025 at 03:51:17PM +0200, Sebastian Ramacher wrote:
> Control: tags -1 confirmed
> 
> On 2025-04-13 16:32:41 +0300, Niko Tyni wrote:
> > Package: release.debian.org
> > Severity: normal
> > User: release.debian.org@packages.debian.org
> > Usertags: unblock
> > X-Debbugs-Cc: perl@packages.debian.org, perl@packages.debian.org
> > Control: affects -1 + src:perl
> > 
> > Hi, please pre-approve the attached one line security fix for sid/trixie
> > for CVE-2024-56406: Perl 5.34, 5.36, 5.38 and 5.40 are vulnerable to a
> > heap buffer overflow when transliterating non-ASCII bytes.
> > 
> >   https://lists.security.metacpan.org/cve-announce/msg/28708725/
> 
> Thanks for preparing the update. Please go ahead.

Thanks, uploaded.
-- 
Niko

Reply to:

References:
- Bug#1102984: unblock/preapproval: perl/5.40.1-3 CVE-2024-56406
  - From: Niko Tyni <ntyni@debian.org>
- Bug#1102984: unblock/preapproval: perl/5.40.1-3 CVE-2024-56406
  - From: Sebastian Ramacher <sramacher@debian.org>

Prev by Date: Processed: Re: Bug#1102984: unblock/preapproval: perl/5.40.1-3 CVE-2024-56406
Next by Date: Processed: unblock: glibc/2.41-7 (pre-approval)
Previous by thread: Bug#1102984: unblock/preapproval: perl/5.40.1-3 CVE-2024-56406
Next by thread: Processed: Re: Bug#1102984: unblock/preapproval: perl/5.40.1-3 CVE-2024-56406
Index(es):
- Date
- Thread