https://bugzilla.redhat.com/show_bug.cgi?id=2381431
Bug ID: 2381431
Summary: CVE-2025-40918 perl-Authen-SASL-SASLprep:
Authen::SASL::Perl::DIGEST_MD5 insecure cnonce
generation [fedora-41]
Product: Fedora
Version: 41
Status: NEW
Whiteboard: {"flaws": ["b8a1661d-36c5-46b6-9770-4c1464735756"]}
Component: perl-Authen-SASL-SASLprep
Keywords: Security, SecurityTracking
Severity: medium
Priority: medium
Assignee: ppi...@redhat.com
Reporter: jmoro...@redhat.com
QA Contact: extras...@fedoraproject.org
CC: jples...@redhat.com,
perl-devel@lists.fedoraproject.org, ppi...@redhat.com
Blocks: 2380942
Target Milestone: ---
Classification: Fedora
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
The following link provides references to all essential vulnerability
management information. If something is wrong or missing, please contact a
member of PSIRT.
https://spaces.redhat.com/display/PRODSEC/Vulnerability+Management+-+Essential+Documents+for+Engineering+Teams
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2381431
Report this comment as SPAM:
https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-spam&short_desc=Report%20of%20Bug%202381431%23c0
--
_______________________________________________
perl-devel mailing list -- perl-devel@lists.fedoraproject.org
To unsubscribe send an email to perl-devel-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/perl-devel@lists.fedoraproject.org
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
