Hi,
I wonder if someone could offer some advice / guidance please?
We are running a few hosts on FreeBSD 11.0-RELEASE-p1, a recent vulnerability scan of these hosts show the following defects in PERL5.24.1 -
CVE-2016-1238: Important unsafe module load path flaw
http://www.nntp.perl.org/group/perl.perl5.porters/2016/07/msg238271.html
p5-XSLoader -- local arbitrary code execution
https://vuxml.freebsd.org/freebsd/3e08047f-5a6c-11e6-a6c3-14dae9d210b8.html
I've updated ports but it seems the latest release of Perl available is the one we are running with the defects i.e. perl 5, version 24, subversion 1.
What are my options for upgrading Perl to remove these vulnerabilities?.
Many thanks daz
I wonder if someone could offer some advice / guidance please?
We are running a few hosts on FreeBSD 11.0-RELEASE-p1, a recent vulnerability scan of these hosts show the following defects in PERL5.24.1 -
CVE-2016-1238: Important unsafe module load path flaw
http://www.nntp.perl.org/group/perl.perl5.porters/2016/07/msg238271.html
p5-XSLoader -- local arbitrary code execution
https://vuxml.freebsd.org/freebsd/3e08047f-5a6c-11e6-a6c3-14dae9d210b8.html
I've updated ports but it seems the latest release of Perl available is the one we are running with the defects i.e. perl 5, version 24, subversion 1.
What are my options for upgrading Perl to remove these vulnerabilities?.
Many thanks daz