AVG-2630 log
| Package | perl |
| Status | Vulnerable |
| Severity | Medium |
| Type | signature forgery |
| Affected | 5.34.0-3 |
| Fixed | Unknown |
| Current | 5.40.0-1 [core] |
| Ticket | Create |
| Created | Mon Dec 13 19:23:21 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2020-16156 | Medium | Yes | Signature forgery | A flaw was found in the way the perl-CPAN 2.28 performed verification of package signatures stored in CHECKSUMS files. A malicious or compromised CPAN... |
| Notes |
|---|
Perl version 5.34.0 bundles CPAN version 2.28. |