perl-CPAN-2.18-402.el8_10

エラータID: AXSA:2025-9982:02

Release date: 
Wednesday, June 4, 2025 - 17:32
Subject: 
perl-CPAN-2.18-402.el8_10
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Moderate
Description: 

The CPAN module is a tool to query, download and build perl modules from CPAN sites.

Security Fix(es):

* perl-CPAN: Bypass of verification of signatures in CHECKSUMS files (CVE-2020-16156)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2020-16156
CPAN 2.28 allows Signature Verification Bypass.

Solution: 

Update packages.

CVEs: 
CVE-2020-16156
CPAN 2.28 allows Signature Verification Bypass.
Additional Info: 

N/A

Download: 

SRPMS
  1. perl-CPAN-2.18-402.el8_10.src.rpm
    MD5: a6c7157786bdef70f6b5958d73e3f1de
    SHA-256: ba3318737cb26cad7d19cd8aac199df6a3c355f71be64da8d138a6b7957dfb08
    Size: 834.69 kB

Asianux Server 8 for x86_64
  1. perl-CPAN-2.18-402.el8_10.noarch.rpm
    MD5: ae62f0452d90649e00cb3a2a3f400539
    SHA-256: 45887c534c3360fa6331626809e3a5407d450989cd108906dec1e16541ee8bde
    Size: 574.00 kB