Debian Libcryptx-Perl vulnerabilities

3 known vulnerabilities affecting debian/libcryptx-perl.

Total CVEs

3

CISA KEV

0

Public exploits

0

Exploited in wild

0

Severity breakdown

CRITICAL3

Vulnerabilities

Page 1 of 1

CVE-2025-40914CRITICALCVSS 9.8fixed in libcryptx-perl 0.087-1 (forky)2025

CVE-2025-40914 [CRITICAL] CVE-2025-40914: libcryptx-perl - Perl CryptX before version 0.087 contains a dependency that may be susceptible t... Perl CryptX before version 0.087 contains a dependency that may be susceptible to an integer overflow. CryptX embeds a version of the libtommath library that is susceptible to an integer overflow associated with CVE-2023-36328. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 0.087-1) sid: resolved (fixed in 0.087-1) trixie: open

CVE-2025-40912CRITICALCVSS 9.1fixed in libcryptx-perl 0.066-1 (bookworm)2025

CVE-2025-40912 [CRITICAL] CVE-2025-40912: libcryptx-perl - CryptX for Perl before version 0.065 contains a dependency that may be susceptib... CryptX for Perl before version 0.065 contains a dependency that may be susceptible to malformed unicode. CryptX embeds the tomcrypt library. The versions of that library in CryptX before 0.065 may be susceptible to CVE-2019-17362. Scope: local bookworm: resolved (fixed in 0.066-1) bullseye: resolved (fixed in 0.066-1) forky: resolved (fixed in 0.066-1) si

CVE-2018-25099CRITICALCVSS 9.8fixed in libcryptx-perl 0.062-1 (bookworm)2018

CVE-2018-25099 [CRITICAL] CVE-2018-25099: libcryptx-perl - In the CryptX module before 0.062 for Perl, gcm_decrypt_verify() and chacha20pol... In the CryptX module before 0.062 for Perl, gcm_decrypt_verify() and chacha20poly1305_decrypt_verify() do not verify the tag. Scope: local bookworm: resolved (fixed in 0.062-1) bullseye: resolved (fixed in 0.062-1) forky: resolved (fixed in 0.062-1) sid: resolved (fixed in 0.062-1) trixie: resolved (fixed in 0.062-1)