https://bugzilla.redhat.com/show_bug.cgi?id=2364055
Bug ID: 2364055
Summary: CVE-2024-58134 perl-Mojolicious: Mojolicious versions
from 0.999922 through 9.39 for Perl uses a hard coded
string, or the application's class name, as a HMAC
session secret by default [epel-8]
Product: Fedora EPEL
Version: epel8
Status: NEW
Whiteboard: {"flaws": ["77dfeebf-9683-4991-96a9-f90ef383361c"]}
Component: perl-Mojolicious
Keywords: Security, SecurityTracking
Severity: medium
Priority: medium
Assignee: emman...@seyman.fr
Reporter: kdu...@redhat.com
QA Contact: extras...@fedoraproject.org
CC: emman...@seyman.fr,
perl-devel@lists.fedoraproject.org,
robinlee.s...@gmail.com, yan...@declera.com
Blocks: 2363893
Target Milestone: ---
Classification: Fedora
More information about this security flaw is available in the following bug:
https://bugzilla.redhat.com/show_bug.cgi?id=2363893
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2364055
Report this comment as SPAM:
https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-spam&short_desc=Report%20of%20Bug%202364055%23c0
--
_______________________________________________
perl-devel mailing list -- perl-devel@lists.fedoraproject.org
To unsubscribe send an email to perl-devel-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/perl-devel@lists.fedoraproject.org
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
