Lucene search
K

48 matches found

CVE
CVE
added 22 hours ago8 views

CVE-2026-14570

CVE-2026-14570 affects Crypt::DSA for Perl prior to 1.22. The root cause is a biased random generator in Crypt::DSA::Util::makerandom that fixes the top bit of the produced N-bit values, making signing nonces non-uniform and enabling private-key recovery. An attacker collecting a modest number of...

5.9AI score
Exploits0References4
Cvelist
Cvelist
added 22 hours ago9 views

CVE-2026-14570 Crypt::DSA versions before 1.22 for Perl draw the DSA signing nonce and private key from a biased random generator, leading to private-key recovery

Crypt::DSA versions before 1.22 for Perl draw the DSA signing nonce and private key from a biased random generator, leading to private-key recovery. "Crypt::DSA::Util::makerandom forces the high bit of every value it returns to obtain an exactly N-bit integer for prime search. The signing nonce a...

Exploits0References3
ATTACKERKB
ATTACKERKB
added 22 hours ago4 views

CVE-2026-14570

Crypt::DSA versions before 1.22 for Perl draw the DSA signing nonce and private key from a biased random generator, leading to private-key recovery. "Crypt::DSA::Util::makerandom forces the high bit of every value it returns to obtain an exactly N-bit integer for prime search. The signing nonce a...

5.9AI score
Exploits0References4
NVD
NVD
added 2026/06/15 11:16 p.m.11 views

CVE-2026-12205

Crypt::DSA versions before 1.21 for Perl reused the nonce across signatures, leading to private-key recovery. Crypt::DSA::sign caches the per-signature nonce material in the Key object without ever clearing it. The first sign on a Key object picks a nonce, and every later sign on that same object...

9.1CVSS0.00289EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/15 12:0 a.m.9 views

Fedora 45 : perl-Crypt-DSA (2026-cf622b92d7)

The remote Fedora 45 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-cf622b92d7 advisory. Automatic update for perl-Crypt-DSA-1.21-1.fc45. Changelog Mon Jun 15 2026 Paul Howarth - 1.21-1 - Update to 1.21 - Fixed key material reuse for multiple...

9.1CVSS5.5AI score0.00289EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/05 7:43 p.m.11 views

CVE-2026-8704

A flaw was found in Crypt-DSA for Perl. This vulnerability arises from the insecure use of the open function with two arguments, which can allow an attacker to modify existing files. This could lead to unauthorized alteration of data, impacting the integrity of the system. Mitigation Mitigation f...

6.5CVSS5AI score0.00318EPSS
Exploits0References2
Fedora
Fedora
added 2026/05/27 1:27 a.m.11 views

[SECURITY] Fedora 43 Update: perl-Crypt-DSA-1.20-1.fc43

Crypt::DSA is an implementation of the DSA Digital Signature Algorithm signature verification system. This package provides DSA signing, signature verification, and key generation. DSA Digital Signature Algorithm signatures are no longer considered to be adequate for security. This module should...

7.3CVSS5.8AI score0.00355EPSS
Exploits0
Fedora
Fedora
added 2026/05/27 1:12 a.m.11 views

[SECURITY] Fedora 42 Update: perl-Crypt-DSA-1.20-1.fc42

Crypt::DSA is an implementation of the DSA Digital Signature Algorithm signature verification system. This package provides DSA signing, signature verification, and key generation. DSA Digital Signature Algorithm signatures are no longer considered to be adequate for security. This module should...

7.3CVSS5.8AI score0.00355EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.7 views

Fedora 42 : perl-Crypt-DSA (2026-ffe3625a50)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-ffe3625a50 advisory. This update fixes a couple of security issues: Replace two arg open CVE-2026-8704 Replace rand with a cryptographically-secure source of random data...

7.3CVSS5.8AI score0.00355EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.9 views

Fedora 43 : perl-Crypt-DSA (2026-fdc100f74f)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-fdc100f74f advisory. This update fixes a couple of security issues: Replace two arg open CVE-2026-8704 Replace rand with a cryptographically-secure source of random data...

7.3CVSS5.8AI score0.00355EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.11 views

Fedora 44 : perl-Crypt-DSA (2026-cdcb20089b)

The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-cdcb20089b advisory. This update fixes a couple of security issues: Replace two arg open CVE-2026-8704 Replace rand with a cryptographically-secure source of random data...

7.3CVSS5.8AI score0.00355EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/16 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-8700

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Crypt::DSA versions before 1.20 for Perl generate seeds using rand. Seeds were generated using Perl's built-in rand function, which is predictable and unsuitabl...

7.3CVSS5.4AI score0.00355EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/16 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-8704

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be modified. CVE-2026-8704 Note that Nessus relies on the presence of the...

6.5CVSS5.5AI score0.00318EPSS
Exploits0References3
OSV
OSV
added 2026/05/15 11:16 p.m.7 views

DEBIAN-CVE-2026-8704

Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be modified...

6.5CVSS5.8AI score0.00318EPSS
Exploits0References1
NVD
NVD
added 2026/05/15 11:16 p.m.24 views

CVE-2026-8704

Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be modified...

6.5CVSS0.00318EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/05/15 11:16 p.m.10 views

CVE-2026-8704

Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be modified...

6.5CVSS5.8AI score0.00318EPSS
Exploits0References5
OSV
OSV
added 2026/05/15 11:16 p.m.4 views

UBUNTU-CVE-2026-8704

Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be modified...

6.5CVSS5.8AI score0.00318EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2026/05/15 10:18 p.m.11 views

CVE-2026-8704

Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be modified...

6.5CVSS5.8AI score0.00318EPSS
Exploits0
Cvelist
Cvelist
added 2026/05/15 10:18 p.m.49 views

CVE-2026-8704 Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be modified

Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be modified...

0.00318EPSS
Exploits0References2
NVD
NVD
added 2026/05/15 10:16 p.m.18 views

CVE-2026-8700

Crypt::DSA versions before 1.20 for Perl generate seeds using rand. Seeds were generated using Perl's built-in rand function, which is predictable and unsuitable for security usage...

7.3CVSS0.00355EPSS
Exploits0References3
Rows per page
Query Builder