libcrypt-dsa-perl - Debian Package Tracker

2 security issues in forky high

2 important issues:

CVE-2026-8700: Crypt::DSA versions before 1.20 for Perl generate seeds using rand. Seeds were generated using Perl's built-in rand function, which is predictable and unsuitable for security usage.
CVE-2026-8704: Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be modified.

Created: 2026-05-16 Last update: 2026-05-18 11:31

2 security issues in bullseye high

There are 2 open security issues in bullseye.

2 important issues:

CVE-2026-8700: Crypt::DSA versions before 1.20 for Perl generate seeds using rand. Seeds were generated using Perl's built-in rand function, which is predictable and unsuitable for security usage.
CVE-2026-8704: Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be modified.

Created: 2026-05-16 Last update: 2026-05-18 11:31

2 low-priority security issues in trixie low

1 issue left for the package maintainer to handle:

CVE-2026-8704: (needs triaging) Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be modified.

You can find information about how to handle this issue in the security team's documentation.

1 ignored issue:

CVE-2026-8700: Crypt::DSA versions before 1.20 for Perl generate seeds using rand. Seeds were generated using Perl's built-in rand function, which is predictable and unsuitable for security usage.

Created: 2026-05-16 Last update: 2026-05-18 11:31

2 low-priority security issues in bookworm low

There are 2 open security issues in bookworm.

1 issue left for the package maintainer to handle:

CVE-2026-8704: (needs triaging) Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be modified.

You can find information about how to handle this issue in the security team's documentation.

1 ignored issue:

CVE-2026-8700: Crypt::DSA versions before 1.20 for Perl generate seeds using rand. Seeds were generated using Perl's built-in rand function, which is predictable and unsuitable for security usage.

Created: 2026-05-16 Last update: 2026-05-18 11:31