=============================================================================
FreeBSD-SA-96:12					        FreeBSD, Inc.

Topic:		security compromise from perl (suidperl) utility
Patches:	ftp://freebsd.org/pub/CERT/patches/SA-96:12/

=============================================================================

The files associated with this vulnerability are:

	SA-96:12.perl4
		Patches for the FreeBSD perl4 distribution.
		Apply this to any FreeBSD 2.x system.

	SA-96:12.perl4.20X-addition
		Additional patches for the FreeBSD perl4
		distribution for FreeBSD 2.0 and 2.0.5
		systems.  Apply this patch to 2.0 and 2.0.5
		systems after applying the above patch.
		This patch is not needed for 2.1 or later
		systems and should not be applied.

	SA-96:12.perl5.patch-aa
	SA-96:12.perl5.patch-ab
		Patches for the FreeBSD perl 5 port.
		Copy these patches into the port's patches
		directory.  Name these files "patch-aa"
		and "patch-ab" respectively.  They will
		overwrite one or more files already present
		in that directory.  Apply these to any
		FreeBSD 2.x system.

	SA-96:12.perl5.patch-ac.20X-addition
		Patches for the FreeBSD perl 5 port
		in FreeBSD 2.0 and 2.0.5.  Copy this
		patch into the port's patches directory
		in addition to the other two patches.
		Call this patch "patch-ac".
		This patch is not needed for 2.1 or
		later systems and should not be applied.

No patches are available for FreeBSD versions earlier than 2.0, however
we believe this vulnerability is not present in earlier versions.

=============================================================================
FreeBSD, Inc.

Web Site:			http://www.freebsd.org/
Confidential contacts:		security-officer@freebsd.org
PGP Key:			ftp://freebsd.org/pub/CERT/public_key.asc
Security notifications:		security-notifications@freebsd.org
Security public discussion:	security@freebsd.org

=============================================================================