libcatalyst-plugin-authentication-perl

2 security issues in trixie high

1 important issue:

1 issue left for the package maintainer to handle:

CVE-2026-5091: (needs triaging) Catalyst::Plugin::Authentication versions through 0.10024 for Perl is susceptible to timing attacks. These versions use Perl's built-in eq comparison. Discrepencies in timing could be used to guess the underlying hash or password.

You can find information about how to handle this issue in the security team's documentation.

Created: 2026-05-22 Last update: 2026-06-09 11:30

2 security issues in bookworm high

There are 2 open security issues in bookworm.

1 important issue:

1 issue left for the package maintainer to handle:

CVE-2026-5091: (needs triaging) Catalyst::Plugin::Authentication versions through 0.10024 for Perl is susceptible to timing attacks. These versions use Perl's built-in eq comparison. Discrepencies in timing could be used to guess the underlying hash or password.

You can find information about how to handle this issue in the security team's documentation.

Created: 2026-05-22 Last update: 2026-06-09 11:30

1 security issue in sid high

1 important issue:

Created: 2026-06-09 Last update: 2026-06-09 11:30

1 security issue in forky high

1 important issue:

Created: 2026-06-09 Last update: 2026-06-09 11:30

2 security issues in bullseye high

There are 2 open security issues in bullseye.

1 important issue:

1 issue postponed or untriaged:

CVE-2026-5091: (postponed; to be fixed through a stable update) Catalyst::Plugin::Authentication versions through 0.10024 for Perl is susceptible to timing attacks. These versions use Perl's built-in eq comparison. Discrepencies in timing could be used to guess the underlying hash or password.

Created: 2026-06-09 Last update: 2026-06-09 11:30