https://bugzilla.redhat.com/show_bug.cgi?id=2359383
Bug ID: 2359383
Summary: CVE-2025-2814 perl-Crypt-CBC: Crypt::CBC versions
between 1.21 and 3.04 for Perl may use insecure rand()
function for cryptographic functions [epel-9]
Product: Fedora EPEL
Version: epel9
Status: NEW
Whiteboard: {"flaws": ["5580521c-42e1-48db-811e-2609a67332d4"]}
Component: perl-Crypt-CBC
Keywords: Security, SecurityTracking
Severity: medium
Priority: medium
Assignee: andr...@bawue.net
Reporter: ahanw...@redhat.com
QA Contact: extras...@fedoraproject.org
CC: andr...@bawue.net, p...@city-fan.org,
perl-devel@lists.fedoraproject.org
Blocks: 2359259
Target Milestone: ---
Classification: Fedora
More information about this security flaw is available in the following bug:
https://bugzilla.redhat.com/show_bug.cgi?id=2359259
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2359383
Report this comment as SPAM:
https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-spam&short_desc=Report%20of%20Bug%202359383%23c0
--
_______________________________________________
perl-devel mailing list -- perl-devel@lists.fedoraproject.org
To unsubscribe send an email to perl-devel-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/perl-devel@lists.fedoraproject.org
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
