CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS.
Advisories
Source ID Title
Debian DLA Debian DLA DLA-3926-1 perl security update
EUVD EUVD EUVD-2023-35789 CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS.
Ubuntu USN Ubuntu USN USN-6112-1 Perl vulnerability
Ubuntu USN Ubuntu USN USN-6112-2 Perl vulnerability
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-02T14:53:30.804Z

Reserved: 2023-04-28T00:00:00

Link: CVE-2023-31484

cve-icon Vulnrichment

Updated: 2024-08-02T14:53:30.804Z

cve-icon NVD

Status : Modified

Published: 2023-04-29T00:15:09.000

Modified: 2024-11-21T08:01:57.707

Link: CVE-2023-31484

cve-icon Redhat

Severity : Moderate

Publid Date: 2023-04-29T00:00:00Z

Links: CVE-2023-31484 - Bugzilla

cve-icon OpenCVE Enrichment

No data.