ghsa-qpjg-v8f6-cw7j
Vulnerability from github
Published
2022-05-01 06:43
Modified
2022-05-01 06:43
Details
Crypt::CBC Perl module 2.16 and earlier, when running in RandomIV mode, uses an initialization vector (IV) of 8 bytes, which results in weaker encryption when used with a cipher that requires a larger block size than 8 bytes, such as Rijndael.
{ "affected": [], "aliases": [ "CVE-2006-0898" ], "database_specific": { "cwe_ids": [], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2006-02-25T11:02:00Z", "severity": "LOW" }, "details": "Crypt::CBC Perl module 2.16 and earlier, when running in RandomIV mode, uses an initialization vector (IV) of 8 bytes, which results in weaker encryption when used with a cipher that requires a larger block size than 8 bytes, such as Rijndael.", "id": "GHSA-qpjg-v8f6-cw7j", "modified": "2022-05-01T06:43:44Z", "published": "2022-05-01T06:43:44Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2006-0898" }, { "type": "WEB", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24954" }, { "type": "WEB", "url": "http://rhn.redhat.com/errata/RHSA-2008-0630.html" }, { "type": "WEB", "url": "http://secunia.com/advisories/18755" }, { "type": "WEB", "url": "http://secunia.com/advisories/19187" }, { "type": "WEB", "url": "http://secunia.com/advisories/19303" }, { "type": "WEB", "url": "http://secunia.com/advisories/20899" }, { "type": "WEB", "url": "http://secunia.com/advisories/31493" }, { "type": "WEB", "url": "http://securityreason.com/securityalert/488" }, { "type": "WEB", "url": "http://www.debian.org/security/2006/dsa-996" }, { "type": "WEB", "url": "http://www.gentoo.org/security/en/glsa/glsa-200603-15.xml" }, { "type": "WEB", "url": "http://www.novell.com/linux/security/advisories/2006_38_security.html" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2008-0261.html" }, { "type": "WEB", "url": "http://www.securityfocus.com/archive/1/425966/100/0/threaded" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/16802" } ], "schema_version": "1.4.0", "severity": [] }
Loading...
Loading...
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.