Lucene search
K

126 matches found

Cvelist
Cvelist
added 2026/05/28 2:13 p.m.30 views

CVE-2026-41565 CryptX versions before 0.088_001 for Perl have a stack buffer overflow in four AEAD decrypt_verify helpers

CryptX versions before 0.088001 for Perl have a stack buffer overflow in four AEAD decryptverify helpers. The gcmdecryptverify, ccmdecryptverify, chacha20poly1305decryptverify and eaxdecryptverify XS routines copied the caller-supplied authentication tag into a fixed 144-byte stack buffer...

0.00469EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/28 2:13 p.m.10 views

CVE-2026-41565

CryptX versions before 0.088001 for Perl have a stack buffer overflow in four AEAD decryptverify helpers. The gcmdecryptverify, ccmdecryptverify, chacha20poly1305decryptverify and eaxdecryptverify XS routines copied the caller-supplied authentication tag into a fixed 144-byte stack buffer...

6.1AI score0.00469EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/28 2:13 p.m.13 views

EUVD-2026-32906

CryptX versions before 0.088001 for Perl have a stack buffer overflow in four AEAD decryptverify helpers. The gcmdecryptverify, ccmdecryptverify, chacha20poly1305decryptverify and eaxdecryptverify XS routines copied the caller-supplied authentication tag into a fixed 144-byte stack buffer...

6.1AI score0.00469EPSS
Exploits0References3
CVE
CVE
added 2026/05/28 2:13 p.m.32 views

CVE-2026-41565

CryptX for Perl (versions

7.5CVSS6.1AI score0.00469EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/05/28 2:13 p.m.12 views

CVE-2026-41565 CryptX versions before 0.088_001 for Perl have a stack buffer overflow in four AEAD decrypt_verify helpers

CryptX versions before 0.088001 for Perl have a stack buffer overflow in four AEAD decryptverify helpers. The gcmdecryptverify, ccmdecryptverify, chacha20poly1305decryptverify and eaxdecryptverify XS routines copied the caller-supplied authentication tag into a fixed 144-byte stack buffer...

6.1AI score0.00469EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/28 12:0 a.m.12 views

PT-2026-44386

Name of the Vulnerable Software and Affected Versions CryptX versions prior to 0.088 001 Description A stack buffer overflow exists in four AEAD decrypt verify helpers. The XS routines gcm decrypt verify, ccm decrypt verify, chacha20poly1305 decrypt verify, and eax decrypt verify copy a...

7.5CVSS5.8AI score0.00469EPSS
Exploits0References21
OPENSUSE Linux
OPENSUSE Linux
added 2026/05/20 12:0 a.m.6 views

Security update for perl-CryptX (important)

openSUSE Security Update: Security update for perl-CryptX Announcement ID: openSUSE-SU-2026:0170-1 Rating: important References: 1244472 1262697 Cross-References: CVE-2025-40914 CVE-2026-41564 Affected Products: openSUSE Backports SLE-15-SP7 An update that fixes two vulnerabilities is now...

9.8CVSS7.2AI score0.00447EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/20 12:0 a.m.14 views

Amazon Linux 2023 : perl-CryptX, perl-CryptX-tests (ALAS2023-2026-1641)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1641 advisory. NOTE: https://lists.security.metacpan.org/cve-announce/msg/39209500/NOTE: https://github.com/DCIT/perl- CryptX/security/advisories/GHSA-24c2-gp6c-24c6NOTE: Fixed by: https://github.com/DCIT/perl-...

7.5CVSS5.8AI score0.00447EPSS
Exploits0References4
OPENSUSE Linux
OPENSUSE Linux
added 2026/05/15 12:0 a.m.6 views

perl-CryptX-0.89.0-1.1 on GA media (moderate)

perl-CryptX-0.89.0-1.1 on GA media Announcement ID: openSUSE-SU-2026:10773-1 Rating: moderate Cross-References: CVE-2026-41564 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...

7.5CVSS5.8AI score0.00447EPSS
Exploits0
OSV
OSV
added 2026/05/13 12:0 a.m.4 views

OPENSUSE-SU-2026:10773-1 perl-CryptX-0.89.0-1.1 on GA media

These are all security issues fixed in the perl-CryptX-0.89.0-1.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS5.8AI score0.00447EPSS
Exploits0References1
Fedora
Fedora
added 2026/05/02 2:11 a.m.6 views

[SECURITY] Fedora 44 Update: perl-CryptX-0.088-2.fc44

This Perl library provides a cryptography based on LibTomCrypt library...

7.5CVSS5.8AI score0.00447EPSS
Exploits0
Fedora
Fedora
added 2026/05/02 1:52 a.m.8 views

[SECURITY] Fedora 43 Update: perl-CryptX-0.088-2.fc43

This Perl library provides a cryptography based on LibTomCrypt library...

7.5CVSS5.8AI score0.00447EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/02 12:0 a.m.3 views

Fedora 43 : perl-CryptX (2026-3e1f671a17)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-3e1f671a17 advisory. 0.088 2026-04-23 - Crypt::KeyDerivation - new functions: pbkdf1openssl, bcryptpbkdf, scryptpbkdf, argon2pbkdf - Crypt::Misc - new functions: randomv7uuid,...

7.5CVSS5.8AI score0.00447EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/02 12:0 a.m.3 views

Fedora 42 : perl-CryptX (2026-bc5090f99b)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-bc5090f99b advisory. 0.088 2026-04-23 - Crypt::KeyDerivation - new functions: pbkdf1openssl, bcryptpbkdf, scryptpbkdf, argon2pbkdf - Crypt::Misc - new functions: randomv7uuid,...

7.5CVSS5.8AI score0.00447EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/02 12:0 a.m.5 views

Fedora 44 : perl-CryptX (2026-f533fcc0b6)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-f533fcc0b6 advisory. 0.088 2026-04-23 - Crypt::KeyDerivation - new functions: pbkdf1openssl, bcryptpbkdf, scryptpbkdf, argon2pbkdf - Crypt::Misc - new functions: randomv7uuid,...

7.5CVSS5.8AI score0.00447EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/04/24 1:27 a.m.5 views

SUSE CVE-2026-41564

CryptX versions before 0.088 for Perl do not reseed the Crypt::PK PRNG state after forking. The Crypt::PK::RSA, Crypt::PK::DSA, Crypt::PK::DH, Crypt::PK::ECC, Crypt::PK::Ed25519 and Crypt::PK::X25519 modules seed a per-object PRNG state in their constructors and reuse it without fork detection. A...

7.5CVSS5.8AI score0.00447EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/04/23 9:52 a.m.5 views

CVE-2026-41564

A flaw was found in CryptX. CryptX versions before 0.088 for Perl do not properly reseed the pseudo-random number generator PRNG state after a process forks. This vulnerability allows an attacker to recover the signing private key by observing two signatures from different child processes, as the...

7.5CVSS5.7AI score0.00447EPSS
Exploits0References2
NVD
NVD
added 2026/04/23 8:16 a.m.6 views

CVE-2026-41564

CryptX versions before 0.088 for Perl do not reseed the Crypt::PK PRNG state after forking. The Crypt::PK::RSA, Crypt::PK::DSA, Crypt::PK::DH, Crypt::PK::ECC, Crypt::PK::Ed25519 and Crypt::PK::X25519 modules seed a per-object PRNG state in their constructors and reuse it without fork detection. A...

7.5CVSS0.00447EPSS
Exploits0References4
OSV
OSV
added 2026/04/23 8:16 a.m.4 views

ALPINE-CVE-2026-41564

CryptX versions before 0.088 for Perl do not reseed the Crypt::PK PRNG state after forking. The Crypt::PK::RSA, Crypt::PK::DSA, Crypt::PK::DH, Crypt::PK::ECC, Crypt::PK::Ed25519 and Crypt::PK::X25519 modules seed a per-object PRNG state in their constructors and reuse it without fork detection. A...

7.5CVSS5.4AI score0.00447EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/04/23 7:29 a.m.6 views

CVE-2026-41564

CryptX versions before 0.088 for Perl do not reseed the Crypt::PK PRNG state after forking. The Crypt::PK::RSA, Crypt::PK::DSA, Crypt::PK::DH, Crypt::PK::ECC, Crypt::PK::Ed25519 and Crypt::PK::X25519 modules seed a per-object PRNG state in their constructors and reuse it without fork detection. A...

7.5CVSS5.3AI score0.00447EPSS
Exploits0
Rows per page
Query Builder