What the vulnerability does

01Description

The Crypt::Random::Source package before 0.13 for Perl has a fallback to the built-in rand() function, which is not a secure source of random bits.

Key dates

02Disclosure timeline

December 29, 2024 CVE published
December 31, 2024 Record updated