Security Advisories (11)

CVE-2006-7230 (2007-11-15)

Perl-Compatible Regular Expression (PCRE) library before 7.0 does not properly calculate the amount of memory needed for a compiled regular expression pattern when the (1) -x or (2) -i UTF-8 options change within the pattern, which allows context-dependent attackers to cause a denial of service (PCRE or glibc crash) via crafted regular expressions.

CVE-2007-1660 (2007-11-07)

Perl-Compatible Regular Expression (PCRE) library before 7.0 does not properly calculate sizes for unspecified "multiple forms of character class", which triggers a buffer overflow that allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code.

CVE-2007-1659 (2007-11-07)

Perl-Compatible Regular Expression (PCRE) library before 7.3 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via regex patterns containing unmatched "\Q\E" sequences with orphan "\E" codes.

CVE-2007-1661 (2007-11-07)

Perl-Compatible Regular Expression (PCRE) library before 7.3 backtracks too far when matching certain input bytes against some regex patterns in non-UTF-8 mode, which allows context-dependent attackers to obtain sensitive information or cause a denial of service (crash), as demonstrated by the "\X?\d" and "\P{L}?\d" patterns.

CVE-2007-1662 (2007-11-07)

Perl-Compatible Regular Expression (PCRE) library before 7.3 reads past the end of the string when searching for unmatched brackets and parentheses, which allows context-dependent attackers to cause a denial of service (crash), possibly involving forward references.

CVE-2007-4766 (2007-11-07)

Multiple integer overflows in Perl-Compatible Regular Expression (PCRE) library before 7.3 allow context-dependent attackers to cause a denial of service (crash) or execute arbitrary code via unspecified escape (backslash) sequences.

CVE-2007-4767 (2007-11-07)

Perl-Compatible Regular Expression (PCRE) library before 7.3 does not properly compute the length of (1) a \p sequence, (2) a \P sequence, or (3) a \P{x} sequence, which allows context-dependent attackers to cause a denial of service (infinite loop or crash) or execute arbitrary code.

CVE-2007-4768 (2007-11-07)

Heap-based buffer overflow in Perl-Compatible Regular Expression (PCRE) library before 7.3 allows context-dependent attackers to execute arbitrary code via a singleton Unicode sequence in a character class in a regex pattern, which is incorrectly optimized.

CVE-2015-2325 (2020-01-14)

The compile_branch function in PCRE before 8.37 allows context-dependent attackers to compile incorrect code, cause a denial of service (out-of-bounds heap read and crash), or possibly have other unspecified impact via a regular expression with a group containing a forward reference repeated a large number of times within a repeated outer group that has a zero minimum quantifier.

CVE-2015-2326 (2020-01-14)

The pcre_compile2 function in PCRE before 8.37 allows context-dependent attackers to compile incorrect code and cause a denial of service (out-of-bounds read) via regular expression with a group containing both a forward referencing subroutine call and a recursive back reference, as demonstrated by "((?+1)(\1))/".

CVE-2015-8382 (2015-12-02)

The match function in pcre_exec.c in PCRE before 8.37 mishandles the /(?:((abcd))|(((?:(?:(?:(?:abc|(?:abcdef))))b)abcdefghi)abc)|((*ACCEPT)))/ pattern and related patterns involving (*ACCEPT), which allows remote attackers to obtain sensitive information from process memory or cause a denial of service (partially initialized memory and application crash) via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror, aka ZDI-CAN-2547.

NAME

pugs - Perl6 User's Golfing System

SYNOPSIS

pugs [OPTIONS]

perl -e 'use pugs; # perl 6 code here...'

DESCRIPTION

This manual describes Pugs, an experimental (but useful) implementation of the Perl6 language.

Perl is a language optimized for scanning arbitrary text files, extracting information from those text files, and printing reports based on that information. It's also a good language for many system management tasks. The language is intended to be practical (easy to use, efficient, complete) rather than beautiful (tiny, elegant, minimal).

If you're new to Pugs, you should start with pugs::intro (yet to be written), which is a general intro for beginners and provides some background to help you navigate the rest of Perl's extensive documentation.

(pugs is also a Perl5 pragma for using Perl6 code inline. See "The pugs pragma" below.)

For ease of access, the Pugs manual has been split up into several sections. Those marked with an asterix haven't been written yet.

Overview

pugs                Perl overview (this section)
pugs::intro       * Perl introduction for beginners
pugs::toc         * Perl documentation table of contents

Reference

pugs::run           Perl execution and options
                  * (many others)

Internals and Foreign Language Interfaces

pugs::hack          An overview of the Pugs source tree

You should be able to view Perl's documentation with your man(1) program or perldoc(1).

THE pugs PRAGMA

[This section describes a Perl 5 pragma named pugs. Hopefully this is not too confusing.]

#!/usr/bin/perl
use pugs;   # Here is some Perl 6 code...
sub postfix:<!> { [*] 1..$_ }
sub sum_factorial { [+] 0..$_! }
no pugs;    # Here is some Perl 5 code...
print sum_factorial(3); # 21

The (Perl 5) pugs module lets you put Perl 6 code in Perl 5 source code after a line of:

use pugs;

To switch back to Perl 5:

no pugs;

See also Perl6::Pugs. The pugs pragma was written by Brian Ingerson <INGY@cpan.org> .

AVAILABILITY

Pugs is available for most operating systems to which GHC has been ported, including many Unix-like platforms as well as (with several limitations) Windows. See "Supported Platforms" in perl::port for a listing (to be written), and the README file in the source distribution.

ENVIRONMENT

See pugs::run.

AUTHOR

Perl was conceived and nurtured by Larry Wall <larry@wall.org>.

Pugs was written by Autrijus Tang <autrijus@autrijus.org>, with the help of oodles of other folks; see the AUTHORS file.

BUGS

Pugs is still under heavy development. If you find a bug, please report it (with a test case, if possible -- see t/README) on #perl6 on irc.freenode.org.

To install Perl6::Pugs, copy and paste the appropriate command in to your terminal.

cpanm

cpanm Perl6::Pugs

CPAN shell

perl -MCPAN -e shell
install Perl6::Pugs

For more information on module installation, please visit the detailed CPAN module installation guide.

	Global
`s`	Focus search bar
`?`	Bring up this help dialog

	GitHub
`g` `p`	Go to pull requests
`g` `i`	Go to GitHub issues (only if GitHub is preferred repository)

	POD
`g` `a`	Go to author
`g` `c`	Go to changes
`g` `i`	Go to issues
`g` `d`	Go to dist
`g` `r`	Go to repository/SCM
`g` `s`	Go to source
`g` `b`	Go to file browse

Search terms
module: (e.g. module:Plugin)
distribution: (e.g. distribution:Dancer auth)
author: (e.g. author:SONGMU Redis)
version: (e.g. version:1.00)