Search CVE reports

Toggle filters

1 – 3 of 3 results

CVE-2025-40914

Medium priority
Needs evaluation

Perl CryptX before version 0.087 contains a dependency that may be susceptible to an integer overflow. CryptX embeds a version of the libtommath library that is susceptible to an integer overflow associated with CVE-2023-36328.

1 affected package

libcryptx-perl

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libcryptx-perl Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2025-40912

Medium priority
Needs evaluation

CryptX for Perl before version 0.065 contains a dependency that may be susceptible to malformed unicode. CryptX embeds the tomcrypt library. The versions of that library in CryptX before 0.065 may be susceptible to CVE-2019-17362.

1 affected package

libcryptx-perl

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libcryptx-perl Not affected Not affected Needs evaluation Needs evaluation
Show less packages

CVE-2018-25099

Medium priority
Needs evaluation

In the CryptX module before 0.062 for Perl, gcm_decrypt_verify() and chacha20poly1305_decrypt_verify() do not verify the tag.

1 affected package

libcryptx-perl

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libcryptx-perl Not affected Not affected Not affected Needs evaluation
Show less packages