[scl.org] SCL : perl 5.30 and recent CVE like CVE-2020-10878

scl-maat-ml at maat.me scl-maat-ml at maat.me
Mon Jun 21 06:30:25 UTC 2021

Dear list members,

This is my first post in SCLO, so hello everybody in there.

I'm testing perls in SCL for rhel7 and centos7... and it seems that the
last packaged verison of perl is 5.30.1

Alas some CVE touching this version of perl were raised in 2020 leading
to perl 5.30.2 and perl 5.30.3 peing released, soi wonder about the
status of these CVE in SCL packaged perls

Redhat appears to have fixed the 5.16 defautl version in Rhel 7 and also
in Rhel 8 including modules... but what about SCL on rhel 7 or Centos 7 ?

I really searched hard for a newer version including listing all recent
builds on koji... but maybe i missed a newer package with 5.30.3  ?

Thanks in advance for your thoughts...


/I'm checking my mails a few times per week and not on a real time
basis. Thanks for your understanding./
/Je traite mes mails par moments dans la semaine et non au fil de l'eau.
Merci de votre compréhension/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/sclorg/attachments/20210621/b2a9fa0f/attachment.htm>

More information about the SCLorg mailing list