Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 42: 2025-52b352c9cd critical vulnerability in perl-Crypt-OpenSSL-RSA

fedora
Calendar Grey June 27, 2025
Dist Fedora Esm H88
Please ensure you update to version 0.35 of perl-Crypt-OpenSSL-RSA promptly to mitigate a significant side-channel attack weakness that has been discovered.
Update to 0.35, fixes CVE-2024-2467

Summary

Crypt::OpenSSL::RSA - RSA encoding and decoding, using the openSSL libraries

Update Information:

Update to 0.35, fixes CVE-2024-2467

Topics%20covered

Topics Covered

security advisory update critical Fedora side-channel attack Crypt-OpenSSL-RSA

Change Log

* Wed May 7 2025 Xavier Bachelot - 0.35-1 - Update to 0.35 (RHBZ#2364877) - Fixes CVE-2024-2467 (RHBZ#2269568) * Mon May 5 2025 Xavier Bachelot - 0.34-1 - Update to 0.34 (RHBZ#2364100)

References


[ 1 ] Bug #2269568 - CVE-2024-2467 perl-Crypt-OpenSSL-RSA: side-channel attack in PKCS#1 v1.5 padding mode (Marvin Attack) [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2269568 [ 2 ] Bug #2364877 - perl-Crypt-OpenSSL-RSA-0.35 is available https://bugzilla.redhat.com/show_bug.cgi?id=2364877

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-52b352c9cd' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: perl-Crypt-OpenSSL-RSA
Product: Fedora 42
Version: 0.35
Release: 1.fc42
URL: https://metacpan.org/release/Crypt-OpenSSL-RSA
Summary: Perl interface to OpenSSL for RSA

Topics%20covered

Topics Covered

security advisory update critical Fedora side-channel attack Crypt-OpenSSL-RSA

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here