[SECURITY] [DSA 5936-1] libfile-find-rule-perl security update

[Salvatore Bonaccorso <carnil@debian.org>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5936-1                   security@debian.org
https://www.debian.org/security/                     Salvatore Bonaccorso
June 05, 2025                         https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : libfile-find-rule-perl
CVE ID         : CVE-2011-10007
Debian Bug     : 1107311

It was discovered that libfile-find-rule-perl, a module to search for
files based on rules, is vulnerable to arbitrary code execution when
grep() encounters a crafted file name.

For the stable distribution (bookworm), this problem has been fixed in
version 0.34-4~deb12u1.

We recommend that you upgrade your libfile-find-rule-perl packages.

For the detailed security status of libfile-find-rule-perl please refer
to its security tracker page at:
https://security-tracker.debian.org/tracker/libfile-find-rule-perl

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----

iQKTBAEBCgB9FiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmhBrkdfFIAAAAAALgAo
aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2
NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQACgkQBUy48xND
z0RAeg//QHvG50ePD/79e9P/fBZ7Mmsj79h6aSaZfk+jGjqCN9/5e/xHgitwC1EZ
YpLTV/jcAJC/9WyLE6r9fyrP7cg6r9pejNegV0mSaHdom+HLfzulFy5nxZgkhov4
QzyImqRKh5bnd3idgqhwx5sGWD5yq7+GrBtn4kWHOJ+n63H7UqYRbe2iuMJCijdH
nGSht7Xd3RBvwB7zraQbBKhcOKwKwbsuOAJaPuHAbY5waFm39dVifxYAsycgWPYK
xhb08orI7qZLNp43LWlDWLH2F0iI8Q8EBmcAXq6e9TsVCv8PU8ycU/RtkeKAInP1
LRhMLq/1O+ZfuxRFv/dzAom9e8Rx+Usdsyj+o5agZ4xLUrIOT/lOhNQEXFGLFPza
qqVju5PbPmNGgsbgtq+ouMGVECWALTV5sGmj5LF3s44eQh952mJT47ZAYKScpzdc
FVQ9E0ePYQTcGeZ0HjbaUr3k/qjy3oVsZsAc/K1rfvYTmNiHny+3N81jNSxMHtfD
vsq6IlwwhiPBXq2dISzDOuV0QuHC12ZDZOekjvIimKut+zQ7pVKJBmzGWkb3AuLY
lIX7eaJtkVKT7rvX73F23N+yWBO9vmq9ePv7TBxkkKEI8AMXa0DAdP5yMKCKRq12
E72PYcjuo63tlxGRfxxCVk7H+Tw0UY6eABvM6DnXYcXsVnEaqY8=
=IK6L
-----END PGP SIGNATURE-----