Описание
The Net::EasyTCP package 0.15 through 0.26 for Perl uses Perl's builtin rand() if no strong randomization module is present.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libnet-easytcp-perl | removed | package |
Примечания
https://github.com/briandfoy/cpan-security-advisory/issues/184
Related to CVE-2002-20002 (direct use of rand for version before < 0.15)
Связанные уязвимости
CVSS3: 5.4
ubuntu
около 1 года назад
The Net::EasyTCP package 0.15 through 0.26 for Perl uses Perl's builtin rand() if no strong randomization module is present.
CVSS3: 5.4
nvd
около 1 года назад
The Net::EasyTCP package 0.15 through 0.26 for Perl uses Perl's builtin rand() if no strong randomization module is present.
CVSS3: 5.4
github
около 1 года назад
The Net::EasyTCP package 0.15 through 0.26 for Perl uses Perl's builtin rand() if no strong randomization module is present.