Fedora 41: perl-Crypt-URandom-Token 2025-0a8c805972: secure password gen
fedora
April 15, 2025
Needed for perl-DBIx-Class-EncodedColumn-0.11
Summary
This module provides a secure way to generate a random token for passwords
and similar using Crypt::URandom as the source of random bits.
Update Information:
Needed for perl-DBIx-Class-EncodedColumn-0.11
Change Log
* Fri Mar 28 2025 Jitka Plesnikova
References
[ 1 ] Bug #2355243 - CVE-2025-27551 perl-DBIx-Class-EncodedColumn: DBIx::Class::EncodedColumn until 0.00032 for Perl uses insecure rand() function for salting password hashes in Digest.pm [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2355243
[ 2 ] Bug #2355245 - CVE-2025-27552 perl-DBIx-Class-EncodedColumn: DBIx::Class::EncodedColumn until 0.00032 for Perl uses insecure rand() function for salting password hashes in Crypt/Eksblowfish/Bcrypt.pm [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2355245
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-0a8c805972' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: perl-Crypt-URandom-Token
Product: Fedora 41
Version: 0.003
Release: 1.fc41
Summary: Generate secure strings for passwords, secrets and similar
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!