/ 
XML-Atom-0.22
Security Advisories (1)
CVE-2012-1102 (2021-07-09)

It was discovered that the XML::Atom Perl module before version 0.39 did not disable external entities when parsing XML from potentially untrusted sources. This may allow attackers to gain read access to otherwise protected resources, depending on how the library is used.

Changes for version 0.22

  • Refactored internal element accessors by eating the new dog food mk_elem_accessors and mk_object_list_accessor.
  • Added support of Atom 1.0 <category> parse and generation
  • Added $thing->links and $thing->categories as a moniker method that returns an array reference in a scalar context
  • Fixed a bug in $content->body() where it accidentally thinks the content is not a valid Unicode string even if it is, if you call eval {} in elsewhere in the code and $@ is left set. (Thanks to Chris Dent for the patch)

Modules

XML::Atom
Atom feed and API implementation
XML::Atom::Client
A client for the Atom API
XML::Atom::Entry
Atom entry
XML::Atom::Feed
Atom feed
XML::Atom::Person
Author or contributor object
XML::Atom::Server
A server for the Atom API
XML::Atom::Util
Utility functions

Provides

LWP::UserAgent::AtomClient
in lib/XML/Atom/Client.pm
XML::Atom::Base
in lib/XML/Atom/Base.pm
XML::Atom::Category
in lib/XML/Atom/Category.pm
XML::Atom::Content
in lib/XML/Atom/Content.pm
XML::Atom::ErrorHandler
in lib/XML/Atom/ErrorHandler.pm
XML::Atom::Link
in lib/XML/Atom/Link.pm
XML::Atom::Namespace
in lib/XML/Atom.pm
XML::Atom::Thing
in lib/XML/Atom/Thing.pm

Other files