http://www.perlmonks.org?node_id=1061780


in reply to Patch an old Perl version

Hmm....   This brings up a couple of side-questions to me:

  1. Where does Perl.org (or any other related group ... CPANTS?   CERN?) ... discuss security-vulnerability issues and which versions of Perl are or are not affected by them?   If I wanted to read more about this particular issue, say, where would I go?   (Let’s say that I am not interested in distributor-specific updates/packages, but the interpreter in general.)
  2. Does Perl use the “patch” mechanism to make minor-version updates (e.g. “5.08.yy”) to the core system?

I know this must be well-documented somewhere ... but ... where, exactly?