perl-CryptX-0.89.0-1.1 on GA media (moderate)

perl-CryptX-0.89.0-1.1 on GA media Announcement ID: openSUSE-SU-2026:10773-1 Rating: moderate Cross-References: CVE-2026-41564 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...

DEBIAN-CVE-2026-41564

CryptX versions before 0.088 for Perl do not reseed the Crypt::PK PRNG state after forking. The Crypt::PK::RSA, Crypt::PK::DSA, Crypt::PK::DH, Crypt::PK::ECC, Crypt::PK::Ed25519 and Crypt::PK::X25519 modules seed a per-object PRNG state in their constructors and reuse it without fork detection. A...

CVE-2026-41564

creationtimestamp| type| source ---|---|--- 2026-04-23 07:54:13+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mk5ju6g7262v 2026-04-23 15:16:16+00:00| published-proof-of-concept| Telegram/GpzWIna0u4Xk2Mxyx7IImpynDcGXZQ8MHW9U4L55IHFQ 2026-04-23 21:45:30+00:00| seen|...

CVE-2026-41564

CryptX versions before 0.088 for Perl do not reseed the Crypt::PK PRNG state after forking. The Crypt::PK::RSA, Crypt::PK::DSA, Crypt::PK::DH, Crypt::PK::ECC, Crypt::PK::Ed25519 and Crypt::PK::X25519 modules seed a per-object PRNG state in their constructors and reuse it without fork detection. A...