↵ Return to the main page of perl-Crypt-DSA
View build
Search for updates
Package Info
🠗 Changelog
🠗 Dependencies
🠗 Provides
🠗 Files
| Date | Author | Change |
|---|---|---|
| 2026-07-03 | Paul Howarth <paul at city dash fan dot org> - 1.22-1 | - Update to 1.22 - Hardening: Use a fresh, independent CSPRNG witness every round - Security fix: Modulo bias in key generation (CVE-2026-14570); an attack with hundreds of signatures could lead to full private-key compromise; keys should be considered compromised and new keys should be generated |
| 2026-06-19 | Yaakov Selkowitz <yselkowi at redhat dot com> - 1.21-2 | - Rebuilt for OpenSSL 4.0 |
| 2026-06-15 | Paul Howarth <paul at city dash fan dot org> - 1.21-1 | - Update to 1.21 - Fixed key material reuse for multiple signing events (CVE-2026-12205, CWE-323) - sign() reused the DSA nonce k across signatures (r and k^-1 were cached on the key and not regenerated), allowing private-key recovery from two signatures over different messages - Now generates a fresh nonce per signature - Keys used to sign more than once with an affected version should be considered compromised |
| 2026-06-12 | Yaakov Selkowitz <yselkowi at redhat dot com> - 1.20-2 | - Rebuilt for openssl 4.0 |
| 2026-05-18 | Paul Howarth <paul at city dash fan dot org> - 1.20-1 | - Update to 1.20 - This module is now marked as deprecated: Crypt-DSA-GMP is a possible replacement - Improve the call to IPC::Open3::open3 - Replace two arg open (CVE-2026-8704) - Replace rand() (CVE-2026-8700) - Add a security policy - Add use warnings - Typo fix (CPAN RT#86424) |
| 2026-01-17 | Fedora Release Engineering <releng at fedoraproject dot org> - 1.19-4 | - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild |
| 2025-07-25 | Fedora Release Engineering <releng at fedoraproject dot org> - 1.19-3 | - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild |
| 2025-01-18 | Fedora Release Engineering <releng at fedoraproject dot org> - 1.19-2 | - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild |
| 2024-12-04 | Paul Howarth <paul at city dash fan dot org> - 1.19-1 | - Update to 1.19 - New maintainer - This release resolves CVE-2011-3599 - Added a statement to recommend against using DSA - Fixed a few long standing bugs - The build process is moved to Dist::Zilla - Switch source URL from cpan.metacpan.org to www.cpan.org |
| 2024-07-18 | Fedora Release Engineering <releng at fedoraproject dot org> - 1.17-42 | - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild |