CVE-2020-16156 log

Source
Severity Medium
Remote Yes
Type Signature forgery
Description
CPAN 2.28 allows for a signature verification bypass.
Group Package Affected Fixed Severity Status Ticket
AVG-2630 perl 5.34.0-3 Medium Vulnerable
References
https://blog.hackeriet.no/cpan-signature-verification-vulnerabilities/
https://blogs.perl.org/users/neilb/2021/11/addressing-cpan-vulnerabilities-related-to-checksums.html