On bugtraq, there was an announcement concerning Safe.pm 2.0.7 and earlier with Perl 5.8.0 and earlier. From the email:
1. Problem Description
Safe.pm 2.0.7 and earlier, when used in Perl 5.8.0 and
earlier, may allow attackers to break out of safe compartments
in (1) Safe::reval or (2) Safe::rdo using a redefined @_
variable, which is not reset between successive calls.
The Common Vulnerabilities and Exposures project (cve.mitre.org)
has assigned the name CAN-2002-1323 to this issue.
Refer to http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-1323 for more info.
------
We are the carpenters and bricklayers of the Information Age.
Then there are Damian modules.... *sigh* ... that's not about being less-lazy -- that's about being on some really good drugs -- you know, there is no spoon. - flyingmoose