CryptX versions before 0.088_001 for Perl contain a stack buffer overflow vulnerability in four AEAD decrypt_verify helper functions. The affected routines—gcm_decrypt_verify, ccm_decrypt_verify, chacha20poly1305_decrypt_verify, and eax_decrypt_verify—copy caller-supplied authentication tags into a fixed 144-byte stack buffer (MAXBLOCKSIZE) without validating the tag length. An attacker-controlled tag lon [truncated]
Crypt::ScryptKDF versions through 0.010 for Perl uses insecure random number source when no CSPRNG module is available. The random_bytes function fell back to using the built-in rand() function when none of the Perl modules Crypt::PRNG, Crypt::OpenSSL::Random, Net::SSLeay, Crypt::Random, or Bytes::Random::Secure were available.