Bug#1030356: signature verification issue CVE-2020-16156
Toni Mueller
toni at debian.org
Fri Feb 3 12:28:26 GMT 2023
Package: perl-base
Version: 5.32.1-4+deb11u2
Severity: grave
Tags: security upstream
X-Debbugs-Cc: Debian Security Team <team at security.debian.org>
Hi,
there's a signature verification problem with the CPAN module shipped
with bullseye. The problem seems to be fixed in CPAN 2.29.
Enjoy,
Toni
-- System Information:
Debian Release: 11.6
APT prefers stable-security
APT policy: (990, 'stable-security'), (990, 'stable'), (500, 'stable-updates'), (500, 'unstable'), (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 5.10.0-20-amd64 (SMP w/12 CPU threads)
Kernel taint flags: TAINT_WARN
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.utf8 (charmap=UTF-8), LANGUAGE=en_US:en
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages perl-base depends on:
ii dpkg 1.20.12
ii libc6 2.31-13+deb11u5
ii libcrypt1 1:4.4.18-4
perl-base recommends no packages.
Versions of packages perl-base suggests:
ii perl 5.32.1-4+deb11u2
ii sensible-utils 0.0.14
-- no debconf information
More information about the Perl-maintainers
mailing list