CVE-2011-3599

EPSS 0.36%

Published: 10/10/2011Modified: 4/28/2026

Also known as:DEBIAN-CVE-2011-3599

Description

The Crypt::DSA (aka Crypt-DSA) module 1.17 and earlier for Perl, when /dev/random is absent, uses the Data::Random module, which makes it easier for remote attackers to spoof a signature, or determine the signing key of a signed message, via a brute-force attack.

Affected packages (1)

Debian/libcrypt-dsa-perlfrom 0, < 1.17-3

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2011-3599