Описание
CryptX for Perl before version 0.065 contains a dependency that may be susceptible to malformed unicode. CryptX embeds the tomcrypt library. The versions of that library in CryptX before 0.065 may be susceptible to CVE-2019-17362.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libcryptx-perl | fixed | 0.066-1 | package |
Примечания
https://github.com/libtom/libtomcrypt/issues/507
perl-CryptX: https://github.com/DCIT/perl-CryptX/commit/32f1d210ed6300b8e82f46f1b983f7316aa7eaf9 (v0.065)
https://lists.security.metacpan.org/cve-announce/msg/30337161/
CVE is for the use of the vulnerable version of the embedded libtomcrypt
library affected by CVE-2019-17362.
EPSS
Связанные уязвимости
CryptX for Perl before version 0.065 contains a dependency that may be susceptible to malformed unicode. CryptX embeds the tomcrypt library. The versions of that library in CryptX before 0.065 may be susceptible to CVE-2019-17362.
CryptX for Perl before version 0.065 contains a dependency that may be susceptible to malformed unicode. CryptX embeds the tomcrypt library. The versions of that library in CryptX before 0.065 may be susceptible to CVE-2019-17362.
CryptX for Perl before version 0.065 contains a dependency that may be susceptible to malformed unicode. CryptX embeds the tomcrypt library. The versions of that library in CryptX before 0.065 may be susceptible to CVE-2019-17362.
EPSS