Package: libdbix-class-encodedcolumn-perl / 0.00020-3

Metadata

Package Version Patches format
libdbix-class-encodedcolumn-perl 0.00020-3 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
0001 Use secure random source for salts.patch | (download)

cpanfile | 2 2 + 0 - 0 !
lib/DBIx/Class/EncodedColumn/Crypt/Eksblowfish/Bcrypt.pm | 3 2 + 1 - 0 !
lib/DBIx/Class/EncodedColumn/Digest.pm | 3 2 + 1 - 0 !
3 files changed, 6 insertions(+), 2 deletions(-)

 
 [patch] use secure random source for salts

This commit replaces `rand()` as source for salts used in password
hashing with Crypt::URandom and Crypt::URandom::Token.

Fixes CVE-2025-27551 and CVE-2025-27552