VYPR

rpm package

suse/perl-Authen-SASL&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP4

pkg:rpm/suse/perl-Authen-SASL&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4

Vulnerabilities (1)

  • CVE-2025-40918MedJul 16, 2025
    affected < 2.16-150000.1.6.1fixed 2.16-150000.1.6.1

    Authen::SASL::Perl::DIGEST_MD5 versions 2.04 through 2.1800 for Perl generates the cnonce insecurely. The cnonce (client nonce) is generated from an MD5 hash of the PID, the epoch time and the built-in rand function. The PID will come from a small set of numbers, and the epoch t