Net-Server 0.99.6.1
Security Advisories
CVE-2005-1127
Format string vulnerability in the log function in Net::Server 0.87 and earlier, as used in Postfix Greylisting Policy Server (Postgrey) 1.18 and earlier, and possibly other products, allows remote attackers to cause a denial of service (crash) via format string specifiers that are not properly handled before being sent to syslog, as demonstrated using sender addresses to Postgrey.
- http://lists.ee.ethz.ch/postgrey/msg00627.html
- http://lists.ee.ethz.ch/postgrey/msg00630.html
- http://lists.ee.ethz.ch/postgrey/msg00647.html
- http://www.osvdb.org/15517
- http://secunia.com/advisories/14958
- http://www.debian.org/security/2006/dsa-1121
- http://www.debian.org/security/2006/dsa-1122
- http://secunia.com/advisories/21164
- http://secunia.com/advisories/21152
- http://secunia.com/advisories/21149
- http://www.gentoo.org/security/en/glsa/glsa-200608-18.xml
- http://www.securityfocus.com/bid/13193
- http://secunia.com/advisories/21452
- http://www.mandriva.com/security/advisories?name=MDKSA-2006:131
- http://marc.info/?l=full-disclosure&m=111354538331167&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20108
Fixed version: >0.87
Reported: 2005-05-02
Kwalitee Issues
- no_pod_errors
-
Remove the POD errors. You can check for POD errors automatically by including Test::Pod to your test suite.
Error: Net-Server-0.99.6.1/lib/Net/Server/HTTP.pm -- Around line 292: You forgot a '=back' before '=head1' Net-Server-0.99.6.1/lib/Net/Server.pod -- Around line 1515: Non-ASCII character seen before =encoding in 'Møllerhøj'. Assuming UTF-8
- meta_yml_declares_perl_version
-
If you are using Build.PL define the {requires}{perl} = VERSION field. If you are using MakeMaker (Makefile.PL) you should upgrade ExtUtils::MakeMaker to 6.48 and use MIN_PERL_VERSION parameter. Perl::MinimumVersion can help you determine which version of Perl your module needs.
- has_meta_json
-
Add a META.json to the distribution. Your buildtool should be able to autogenerate it.
- meta_yml_has_license
-
Define the license if you are using in Build.PL. If you are using MakeMaker (Makefile.PL) you should upgrade to ExtUtils::MakeMaker version 6.31.
- use_warnings
-
Add 'use warnings' (or its equivalents) to all modules, or convince us that your favorite module is well-known enough and people can easily see the modules warn when something bad happens.
Error: Net::Server, Net::Server::Daemonize, Net::Server::Fork, Net::Server::INET, Net::Server::MultiType, Net::Server::Multiplex, Net::Server::PreFork, Net::Server::PreForkSimple, Net::Server::Proto, Net::Server::Proto::SSL, Net::Server::Proto::SSLEAY, Net::Server::Proto::TCP, Net::Server::Proto::UDP, Net::Server::Proto::UNIX, Net::Server::SIG, Net::Server::Single
- no_unauthorized_packages
-
Ask the owner of the distribution (the one who released it first, or the one who is designated in x_authority) to give you a (co-)maintainer's permission.
Error:
- Net::Server
- Net::Server::Daemonize
- Net::Server::Fork
- Net::Server::HTTP
- Net::Server::INET
- Net::Server::INET::Handle
- Net::Server::MultiType
- Net::Server::Multiplex
- Net::Server::Multiplex::MUX
- Net::Server::PreFork
- Net::Server::PreForkSimple
- Net::Server::Proto
- Net::Server::Proto::SSL
- Net::Server::Proto::SSLEAY
- Net::Server::Proto::TCP
- Net::Server::Proto::UDP
- Net::Server::Proto::UNIX
- Net::Server::SIG
- Net::Server::Single
- Net::Server::TiedHandle
- no_invalid_versions
-
Fix the version numbers so that version::is_lax($version) returns true.
Error:
- lib/Net/Server/Fork.pm: HASH(0x55c8d1541b78)
- lib/Net/Server/HTTP.pm: HASH(0x55c8d1499ff0)
- lib/Net/Server/INET.pm: HASH(0x55c8d155e800)
- lib/Net/Server/MultiType.pm: HASH(0x55c8d1541698)
- lib/Net/Server/Multiplex.pm: HASH(0x55c8d150e930)
- lib/Net/Server/PreFork.pm: HASH(0x55c8cf6d3008)
- lib/Net/Server/PreForkSimple.pm: HASH(0x55c8d14521d8)
- lib/Net/Server/Proto.pm: HASH(0x55c8d04f5ac8)
- lib/Net/Server/Proto/SSL.pm: HASH(0x55c8d14e77b8)
- lib/Net/Server/Proto/SSLEAY.pm: HASH(0x55c8d1504a60)
- lib/Net/Server/Proto/TCP.pm: HASH(0x55c8d14de568)
- lib/Net/Server/Proto/UDP.pm: HASH(0x55c8d14c09d8)
- lib/Net/Server/Proto/UNIX.pm: HASH(0x55c8d156b710)
- lib/Net/Server/Single.pm: HASH(0x55c8d1535a98)
- consistent_version
-
Split the distribution, or fix the version numbers to make them consistent (use the highest version number to avoid version downgrade).
Error: 0.01,0.05,0.099006001
- meta_yml_has_provides
-
Add all modules contained in this distribution to the META.yml field 'provides'. Module::Build or Dist::Zilla::Plugin::MetaProvides do this automatically for you.
- meta_yml_has_repository_resource
-
Add a 'repository' resource to the META.yml via 'meta_add' accessor (for Module::Build) or META_ADD parameter (for ExtUtils::MakeMaker).
- has_separate_license_file
-
This is not a critical issue. Currently mainly informative for the CPANTS authors. It might be removed later.
Modules
Name | Abstract | Version | View |
---|---|---|---|
Net::Server | Extensible, general Perl server engine | 0.099006001 | metacpan |
Net::Server::Daemonize | Safe fork and daemonization utilities | 0.05 | metacpan |
Net::Server::Fork | Net::Server personality | metacpan | |
Net::Server::HTTP | very basic Net::Server based HTTP server class | metacpan | |
Net::Server::INET | Net::Server personality | metacpan | |
Net::Server::MultiType | Net::Server personality | metacpan | |
Net::Server::Multiplex | Multiplex several connections within one process | metacpan | |
Net::Server::PreFork | Net::Server personality | metacpan | |
Net::Server::PreForkSimple | Net::Server personality | metacpan | |
Net::Server::Proto | Net::Server Protocol compatibility layer | metacpan | |
Net::Server::Proto::SSL | Net::Server SSL protocol (deprecated - use Net::Server::Proto::SSLEAY instead). | metacpan | |
Net::Server::Proto::SSLEAY | Custom Net::Server SSL protocol handler based on Net::SSLeay directly. | metacpan | |
Net::Server::Proto::TCP | Net::Server TCP protocol. | metacpan | |
Net::Server::Proto::UDP | Net::Server UDP protocol. | metacpan | |
Net::Server::Proto::UNIX | adp0 - Net::Server UNIX protocol. | metacpan | |
Net::Server::SIG | adpf - Safer signal handling | 0.01 | metacpan |
Net::Server::Single | Net::Server personality | metacpan |