Scrypt is a password-based key derivation function (like for example
PBKDF2). Scrypt was designed to be "memory-hard" algorithm in order to make
it expensive to perform large scale custom hardware attacks.
Update Information:
perl-Crypt-ScryptKDF: 0.011 release
* Fri Jun 26 2026 Denis Fateyev
[ 1 ] Bug #2478137 - perl-Crypt-ScryptKDF-0.011 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2478137
[ 2 ] Bug #2484583 - CVE-2026-8647 perl-Crypt-ScryptKDF: Crypt::ScryptKDF for Perl uses insecure random number source when no CSPRNG module is available [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2484583
[ 3 ] Bug #2484584 - CVE-2026-8647 perl-Crypt-ScryptKDF: Crypt::ScryptKDF for Perl uses insecure random number source when no CSPRNG module is available [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2484584
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-b244acadbe' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
Get the latest Linux and open source security news straight to your inbox.