SOAP-Lite 0.713
Security Advisories
CVE-2015-8978
An example attack consists of defining 10 or more XML entities, each defined as consisting of 10 of the previous entity, with the document consisting of a single instance of the largest entity, which expands to one billion copies of the first entity. The amount of computer memory used for handling an external SOAP call would likely exceed that available to the process parsing the XML.
- https://www.securityfocus.com/bid/94487
- https://github.com/redhotpenguin/perl-soaplite/commit/6942fe0d281be1c32c5117605f9c4e8d44f51124
Fixed version: >=1.15
Reported: 2015-07-21
Kwalitee Issues
- use_strict
-
Add 'use strict' (or its equivalents) to all modules, or convince us that your favorite module is well-known enough and people can easily see the modules are strictly written.
Error: SOAP::Lite::Deserializer::XMLSchemaSOAP1_2
- has_meta_json
-
Add a META.json to the distribution. Your buildtool should be able to autogenerate it.
- use_warnings
-
Add 'use warnings' (or its equivalents) to all modules, or convince us that your favorite module is well-known enough and people can easily see the modules warn when something bad happens.
Error: Apache::SOAP, Apache::XMLRPC::Lite, IO::SessionData, IO::SessionSet, SOAP::Constants, SOAP::Lite, SOAP::Lite::Deserializer::XMLSchema1999, SOAP::Lite::Deserializer::XMLSchema2001, SOAP::Lite::Deserializer::XMLSchemaSOAP1_1, SOAP::Lite::Deserializer::XMLSchemaSOAP1_2, SOAP::Lite::Packager, SOAP::Lite::Utils, SOAP::Packager, SOAP::Test, SOAP::Transport::HTTP, SOAP::Transport::IO, SOAP::Transport::LOCAL, SOAP::Transport::LOOPBACK, SOAP::Transport::MAILTO, SOAP::Transport::POP3, SOAP::Transport::TCP, UDDI::Lite, XMLRPC::Lite, XMLRPC::Test, XMLRPC::Transport::HTTP, XMLRPC::Transport::POP3, XMLRPC::Transport::TCP
- no_unauthorized_packages
-
Ask the owner of the distribution (the one who released it first, or the one who is designated in x_authority) to give you a (co-)maintainer's permission.
Error:
- LWP::Protocol
- consistent_version
-
Split the distribution, or fix the version numbers to make them consistent (use the highest version number to avoid version downgrade).
Error: 0.713,1.02
- meta_yml_has_provides
-
Add all modules contained in this distribution to the META.yml field 'provides'. Module::Build or Dist::Zilla::Plugin::MetaProvides do this automatically for you.
- has_separate_license_file
-
This is not a critical issue. Currently mainly informative for the CPANTS authors. It might be removed later.
Modules
Name | Abstract | Version | View |
---|---|---|---|
Apache::SOAP | mod_perl-based SOAP server with minimum configuration | 0.713 | metacpan |
Apache::XMLRPC::Lite | mod_perl-based XML-RPC server with minimum configuration | 0.713 | metacpan |
IO::SessionData | 1.02 | metacpan | |
IO::SessionSet | metacpan | ||
SOAP::Constants | SOAP::Lite provides several variables to allows programmers and users to modify the behavior of SOAP::Lite in specific ways. | 0.713 | metacpan |
SOAP::Lite | Perl's Web Services Toolkit | 0.713 | metacpan |
SOAP::Lite::Deserializer::XMLSchema1999 | metacpan | ||
SOAP::Lite::Deserializer::XMLSchema2001 | metacpan | ||
SOAP::Lite::Deserializer::XMLSchemaSOAP1_1 | metacpan | ||
SOAP::Lite::Deserializer::XMLSchemaSOAP1_2 | metacpan | ||
SOAP::Lite::Packager | this class is an abstract class which allows for multiple types of packaging agents such as MIME and DIME. | metacpan | |
SOAP::Lite::Utils | metacpan | ||
SOAP::Packager | this class is an abstract class which allows for multiple types of packaging agents such as MIME and DIME. | 0.713 | metacpan |
SOAP::Test | Test framework for SOAP::Lite | 0.713 | metacpan |
SOAP::Transport::HTTP | 0.713 | metacpan | |
SOAP::Transport::IO | 0.713 | metacpan | |
SOAP::Transport::LOCAL | 0.713 | metacpan | |
SOAP::Transport::LOOPBACK | Test loopback transport backend (Client only) | metacpan | |
SOAP::Transport::MAILTO | 0.713 | metacpan | |
SOAP::Transport::POP3 | Server side POP3 support for SOAP::Lite | 0.713 | metacpan |
SOAP::Transport::TCP | 0.713 | metacpan | |
UDDI::Lite | Library for UDDI clients in Perl | 0.713 | metacpan |
XML::Parser::Lite | Lightweight regexp-based XML parser | 0.713 | metacpan |
XMLRPC::Lite | client and server implementation of XML-RPC protocol | 0.713 | metacpan |
XMLRPC::Test | Test framework for XMLRPC::Lite | 0.713 | metacpan |
XMLRPC::Transport::HTTP | Server/Client side HTTP support for XMLRPC::Lite | 0.713 | metacpan |
XMLRPC::Transport::POP3 | Server side POP3 support for XMLRPC::Lite | 0.713 | metacpan |
XMLRPC::Transport::TCP | Server/Client side TCP support for XMLRPC::Lite | 0.713 | metacpan |
Provides
Name | File | View |
---|---|---|
LWP::Protocol | lib/SOAP/Transport/HTTP.pm | metacpan |
My::PingPong | lib/SOAP/Test.pm | metacpan |
SOAP | lib/SOAP/Lite.pm | metacpan |
SOAP::Client | lib/SOAP/Lite.pm | metacpan |
SOAP::Cloneable | lib/SOAP/Lite.pm | metacpan |
SOAP::Custom::XML::Data | lib/SOAP/Lite.pm | metacpan |
SOAP::Custom::XML::Deserializer | lib/SOAP/Lite.pm | metacpan |
SOAP::Data | lib/SOAP/Lite.pm | metacpan |
SOAP::Deserializer | lib/SOAP/Lite.pm | metacpan |
SOAP::Fault | lib/SOAP/Lite.pm | metacpan |
SOAP::Header | lib/SOAP/Lite.pm | metacpan |
SOAP::Lite::COM | lib/SOAP/Lite.pm | metacpan |
SOAP::Lite::Packager::DIME | lib/SOAP/Lite/Packager.pm | metacpan |
SOAP::Lite::Packager::MIME | lib/SOAP/Lite/Packager.pm | metacpan |
SOAP::Packager::DIME | lib/SOAP/Packager.pm | metacpan |
SOAP::Packager::MIME | lib/SOAP/Packager.pm | metacpan |
SOAP::Parser | lib/SOAP/Lite.pm | metacpan |
SOAP::SOM | lib/SOAP/Lite.pm | metacpan |
SOAP::Schema | lib/SOAP/Lite.pm | metacpan |
SOAP::Schema::Deserializer | lib/SOAP/Lite.pm | metacpan |
SOAP::Schema::WSDL | lib/SOAP/Lite.pm | metacpan |
SOAP::Serializer | lib/SOAP/Lite.pm | metacpan |
SOAP::Server | lib/SOAP/Lite.pm | metacpan |
SOAP::Server::Object | lib/SOAP/Lite.pm | metacpan |
SOAP::Server::Parameters | lib/SOAP/Lite.pm | metacpan |
SOAP::Test::Server | lib/SOAP/Test.pm | metacpan |
SOAP::Trace | lib/SOAP/Lite.pm | metacpan |
SOAP::Transport | lib/SOAP/Lite.pm | metacpan |
SOAP::Transport::HTTP::Apache | lib/SOAP/Transport/HTTP.pm | metacpan |
SOAP::Transport::HTTP::CGI | lib/SOAP/Transport/HTTP.pm | metacpan |
SOAP::Transport::HTTP::Client | lib/SOAP/Transport/HTTP.pm | metacpan |
SOAP::Transport::HTTP::Daemon | lib/SOAP/Transport/HTTP.pm | metacpan |
SOAP::Transport::HTTP::FCGI | lib/SOAP/Transport/HTTP.pm | metacpan |
SOAP::Transport::HTTP::Server | lib/SOAP/Transport/HTTP.pm | metacpan |
SOAP::Transport::IO::Server | lib/SOAP/Transport/IO.pm | metacpan |
SOAP::Transport::LOCAL::Client | lib/SOAP/Transport/LOCAL.pm | metacpan |
SOAP::Transport::LOOPBACK::Client | lib/SOAP/Transport/LOOPBACK.pm | metacpan |
SOAP::Transport::MAILTO::Client | lib/SOAP/Transport/MAILTO.pm | metacpan |
SOAP::Transport::POP3::Server | lib/SOAP/Transport/POP3.pm | metacpan |
SOAP::Transport::TCP::Client | lib/SOAP/Transport/TCP.pm | metacpan |
SOAP::Transport::TCP::Server | lib/SOAP/Transport/TCP.pm | metacpan |
SOAP::Utils | lib/SOAP/Lite.pm | metacpan |
SOAP::XMLSchema1999::Serializer | lib/SOAP/Lite.pm | metacpan |
SOAP::XMLSchema2001::Serializer | lib/SOAP/Lite.pm | metacpan |
SOAP::XMLSchema::Serializer | lib/SOAP/Lite.pm | metacpan |
SOAP::XMLSchemaApacheSOAP::Deserializer | lib/SOAP/Lite.pm | metacpan |
UDDI::Constants | lib/UDDI/Lite.pm | metacpan |
UDDI::Data | lib/UDDI/Lite.pm | metacpan |
UDDI::Deserializer | lib/UDDI/Lite.pm | metacpan |
UDDI::SOM | lib/UDDI/Lite.pm | metacpan |
UDDI::Serializer | lib/UDDI/Lite.pm | metacpan |
URI::tcp | lib/SOAP/Transport/TCP.pm | metacpan |
XMLRPC | lib/XMLRPC/Lite.pm | metacpan |
XMLRPC::Constants | lib/XMLRPC/Lite.pm | metacpan |
XMLRPC::Data | lib/XMLRPC/Lite.pm | metacpan |
XMLRPC::Deserializer | lib/XMLRPC/Lite.pm | metacpan |
XMLRPC::SOM | lib/XMLRPC/Lite.pm | metacpan |
XMLRPC::Serializer | lib/XMLRPC/Lite.pm | metacpan |
XMLRPC::Server | lib/XMLRPC/Lite.pm | metacpan |
XMLRPC::Server::Parameters | lib/XMLRPC/Lite.pm | metacpan |
XMLRPC::Test::Server | lib/XMLRPC/Test.pm | metacpan |
XMLRPC::Transport::HTTP::Apache | lib/XMLRPC/Transport/HTTP.pm | metacpan |
XMLRPC::Transport::HTTP::CGI | lib/XMLRPC/Transport/HTTP.pm | metacpan |
XMLRPC::Transport::HTTP::Daemon | lib/XMLRPC/Transport/HTTP.pm | metacpan |
XMLRPC::Transport::POP3::Server | lib/XMLRPC/Transport/POP3.pm | metacpan |
XMLRPC::Transport::TCP::Server | lib/XMLRPC/Transport/TCP.pm | metacpan |