Debian/libcrypt-dsa-perl — 4 CVEs

CRITICAL9.1CVE-2026-12205Crypt::DSA versions before 1.21 for Perl reused the nonce across signatures, leading to private-key recovery.

from 0

HIGH7.3CVE-2026-8700Crypt::DSA versions before 1.20 for Perl generate seeds using rand.

from 0

MEDIUM6.5CVE-2026-8704Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be modified.

from 0

—The Crypt::DSA (aka Crypt-DSA) module 1.17 and earlier for Perl, when /dev/random is absent, uses the Data::Random module, which makes it e…

from 0, < 1.17-3

pkg:Debian/libcrypt-dsa-perl