|
Family: Debian Local Security Checks --> Category: infos
[DSA996] DSA-996-1 libcrypt-cbc-perl Vulnerability Scan
Vulnerability Scan Summary DSA-996-1 libcrypt-cbc-perl
Detailed Explanation for this Vulnerability Test
Lincoln Stein discovered that the Perl Crypt::CBC module produces weak
ciphertext when used with block encryption algorithms with blocksize >
8 bytes.
The old stable distribution (woody) does not contain a Crypt::CBC module.
For the stable distribution (sarge) this problem has been fixed in
version 2.12-1sarge1.
For the unstable distribution (sid) this problem has been fixed in
version 2.17-1.
We recommend that you upgrade your libcrypt-cbc-perl package.
Solution : http://www.debian.org/security/2006/dsa-996
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|