Request 882135: Submit perl-Data-Validate-IP - openSUSE Build Service

Overview

Request 882135 accepted

- updated to 0.30
see /usr/share/doc/packages/perl-Data-Validate-IP/Changes
0.30 2021-03-29
- Added some more details to the security docs to include mentions of the
is_*_ip() functions too.
0.29 2021-03-29
- Fixed a typo in the POD.
0.28 2021-03-29
- Added docs about the security implications of using functions like
is_private_ip4() without _also_ calling is_ipv4() first. This was inspired
by a recent issue with the Node netmask package. See
https://sick.codes/universal-netmask-npm-package-used-by-270000-projects-vulnerable-to-octal-input-data-server-side-request-forgery-remote-file-inclusion-local-file-inclusion-and-more-cve-2021-28918/
for a write up.

Created by tinita about 3 years ago
In state accepted
Package maintainer: mlin7442

Submit perl-Data-Validate-IP

Comments for request 882135 1

Staging Bot (staging-bot) - about 3 years ago

@mlin7442: review reminder

Login required, please login in order to comment

Request History

tinita created request about 3 years ago

- updated to 0.30
see /usr/share/doc/packages/perl-Data-Validate-IP/Changes
0.30 2021-03-29
- Added some more details to the security docs to include mentions of the
is_*_ip() functions too.
0.29 2021-03-29
- Fixed a typo in the POD.
0.28 2021-03-29
- Added docs about the security implications of using functions like
is_private_ip4() without _also_ calling is_ipv4() first. This was inspired
by a recent issue with the Node netmask package. See
https://sick.codes/universal-netmask-npm-package-used-by-270000-projects-vulnerable-to-octal-input-data-server-side-request-forgery-remote-file-inclusion-local-file-inclusion-and-more-cve-2021-28918/
for a write up.

tinita accepted request about 3 years ago

openSUSE Build Service is sponsored by