develooper Front page | perl.perl5.porters | Postings from November 2021

CPAN vulnerabilities related to checksums

Neil Bowers
November 23, 2021 18:08
CPAN vulnerabilities related to checksums
Message ID:
We’ve just published a blog post that summarises a response to a security advisory raised by Stig Palmquist. The advisory introduces three CVEs related to how checksums are handled by PAUSE and CPAN clients.

The blog post:

The advisory:

Neil Perl Programming lists via nntp and http.
Comments to Ask Bjørn Hansen at | Group listing | About