[MacPorts] #56122: munin fails to upgrade to 1.4.7_6
MacPorts
noreply at macports.org
Sat Mar 24 15:51:39 UTC 2018
#56122: munin fails to upgrade to 1.4.7_6
---------------------+-----------------
Reporter: pdvnl | Owner:
Type: defect | Status: new
Priority: Normal | Milestone:
Component: ports | Version:
Resolution: | Keywords:
Port: munin |
---------------------+-----------------
Comment (by pdvnl):
Change from 1.4.7_5 to 1.4.7_6 is only the change from perl5.24 to
perl5.26.
As stated in [perldelta] for perl 5.26:
"The perl binary includes a default set of paths in @INC . Historically it
has also included the current directory ("." ) as the final entry, unless
run with taint mode enabled (perl -T ). While convenient, this has
security implications: for example, where a script attempts to load an
optional module when its current directory is untrusted (such as /tmp), it
could load and execute code from under that directory."
Because this change is motivated by security, I think the way to go is
updating the source.
I supply a patch and a new Portfile.
--
Ticket URL: <https://trac.macports.org/ticket/56122#comment:3>
MacPorts <https://www.macports.org/>
Ports system for macOS
More information about the macports-tickets
mailing list