Gabor Szabo

Posted on Apr 14 • Originally published at perlweekly.com

Perl 🐪 Weekly #716 - CVE in Perl

#perl #news #programming

Originally published at Perl Weekly 716

Hi there,

A few days ago, I wrote a blog post about CVEs. It was my first time looking at CVEs closely. Then I came across a reddit post discussing CVE-2024-56406. I am a bit confused, was this fixed in Perl v5.38.4 or Perl v5.40.2?

That said, it gave me something fun to dig into. I already know what I'll be doing next. During my search, I discovered the, CPAN Security Group, a community effort dedicated to handling security incidents on CPAN. Pretty cool!

Also the Perl Toolchain Summit 2025 needs our support as mentioned in the blog post. I'm happy to see my current employer, Oleeo, listed as one of the In-Kind Sponsors. Now, I'm curious to find out who the lucky team member is that gets to attend!. It's happening this year from Thursday May 1st to Sunday May 4th 2025.

I remember back in 2019, the summit was held so close to me, in Marlow, if I recall correctly. I've said it before and I'll say it again, I have to get involved in the MetaCPAN project. The main blocker last time was setting up the local development environment. I spoke to someone about it, can't remember who, and he mentioned the team was working on simplifying the setup process to make it easier for contributors. I haven't had a chance to check the current status, but I'm adding it to my ever-growing TODO list.

Happy Monday and enjoy the rest of the newsletter!

--
Your editor: Mohammad Sajid Anwar.

Announcements

This week in PSC (186) | 2025-04-10

Preparation of next big release is on the track. Perl logo is also discussed.

Articles

Reaching 1.0

With the Harmonograph you can create beautiful and individual images within a few clicks. It's painting by pendulum.

CVE in Perl

What is CVE? Well the post answers some of the most commonly asked questions with regard to CVE and in particular from Perl point of view.

CPAN Scan

Nice colourful website showing recent released Perl modules with a short abstracts.

Multiple embedded Perl instances in multithreaded environment

Currently I am developing an ASP.NET application that for legacy reasons needs to execute some Perl scripts. For this I wrote a small C++ library that uses the embedded Perl API.

Enhancing Your MIDI Devices: Round II

The second post in the series talking about MIDI devices that can be enhanced to function in different ways besides just triggering a single note per key (or pad) press.

Writing a 1GB file in perl

C is stranger to me now. This wws a refresher, peeking inside C.

CPAN

Introducing DBIx::Class::ResultSet::PrettyPrint

For all DBIC fans, this is going to be very handy tool in your toolbox. Find out more about it in the post.

Time::Piece v1.36

Parsing speed up for strftime and strptime.

Scalar::List::Utils v1.69

Always allow isvstring to be exported even on Perl 5.6.

Math::BigInt v2.005002

Fix the handling of read-only objects in bblsft() and bbrsft() in Math::BigFloat and Math::BigRat.

The Weekly Challenge

The Weekly Challenge by Mohammad Sajid Anwar will help you step out of your comfort-zone. You can even win prize money of $50 by participating in the weekly challenge. We pick one champion at the end of the month from among all of the contributors during the month, thanks to the sponsor Lance Wicks.

Announcements

Articles

CPAN

The Weekly Challenge

Rakudo

Other

Weekly collections

Events