Feeds

Apple says sorry for Mac Perl breakage

Fix on the way

Internet Security Threat Report 2014

Apple has apologized for breaking Perl with its latest Mac OS X security update, saying it will distribute a solution to the problem with a future update.

In a note to The Reg and a post to the Apple support forums, Senior Apple programmer Edward Moy apologized for "the unforeseen problems that the 2009-001 security update has caused" with Perl.

After the release of 2009-001 in mid-February, developers from across the web complained that after installing the update, many of their Perl scripts quit running.

"I've just done the update using Software update and just about everything I look at is working, except that perl seems to have gone almost AWOL," said one Mac OS X user, with a post to the support forum.

"I've seen it pop up occasionally in the Activity Monitor, but when I try to run perl scripts from the command line or the cron jobs that ran flawlessly before the update, nothing happens. Period."

One IT consultant even went so far as to say "Because of these kinds of problems, I stopped recommending Apple Servers to my enterprise customers."

According to one blogger, the problem only occurs if you're running Leopard (Mac OS X 10.5), you're using the Perl distro that comes with the OS, and you've updated the distro via CPAN (Comprehensive Perl Archive Network), a widely-used collection of existing Perl modules.

Apple's Moy says the problem is due to the way Perl orders its module directory search path: the system Perl directory comes before site-specific directories (e.g. /System/Library/Perl/5.8.8). "This means that if you try to update a module in the system perl directory by installing it in a site-specific directory like you normally would any other perl module, the search path order would result in the old module being found first," he writes. "So, the only way to do this kind of update is to directly overwrite the module in the system perl directory."

In other words, using CPAN to update Perl modules tweaks the system directory, and if you've installed Apple's latest security update, this could cause a problem.

Some system Perl modules use both a Perl (.pm) file and a binary (.bundle) file. With many of these modules, Moy says, Apple's new security update installs the original versions of .bundle files (complete with security fixes) without updating their matching .pm files (security fixes were required). So, when a newer version .pm file tries to load an older version .bundle file installed by the 2009-001 security update, your get a failure.

At this point, the only solution is to reinstall the affected module. But Moy says Apple is hard at work on a broader fix, and the company intends to include such a fix with a future software update. ®

Top 5 reasons to deploy VMware with Tegile

More from The Register

next story
PEAK APPLE: iOS 8 is least popular Cupertino mobile OS in all of HUMAN HISTORY
'Nerd release' finally staggers past 50 per cent adoption
Microsoft to bake Skype into IE, without plugins
Redmond thinks the Object Real-Time Communications API for WebRTC is ready to roll
Microsoft promises Windows 10 will mean two-factor auth for all
Sneak peek at security features Redmond's baking into new OS
Mozilla: Spidermonkey ATE Apple's JavaScriptCore, THRASHED Google V8
Moz man claims the win on rivals' own benchmarks
Yes, Virginia, there IS a W3C HTML5 standard – as of now, that is
You asked for it! You begged for it! Then you gave up! And now it's HERE!
FTDI yanks chip-bricking driver from Windows Update, vows to fight on
Next driver to battle fake chips with 'non-invasive' methods
DEATH by PowerPoint: Microsoft warns of 0-day attack hidden in slides
Might put out patch in update, might chuck it out sooner
Ubuntu 14.10 tries pulling a Steve Ballmer on cloudy offerings
Oi, Windows, centOS and openSUSE – behave, we're all friends here
prev story

Whitepapers

Cloud and hybrid-cloud data protection for VMware
Learn how quick and easy it is to configure backups and perform restores for VMware environments.
Getting started with customer-focused identity management
Learn why identity is a fundamental requirement to digital growth, and how without it there is no way to identify and engage customers in a meaningful way.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
New hybrid storage solutions
Tackling data challenges through emerging hybrid storage solutions that enable optimum database performance whilst managing costs and increasingly large data stores.
Website security in corporate America
Find out how you rank among other IT managers testing your website's vulnerabilities.