You are here

CVE-2006-0898

Vincent (CVE) Danen's picture
Crypt::CBC Perl module 2.16 and earlier, when running in RandomIV mode, uses an initialization vector (IV) of 8 bytes, which results in weaker encryption when used with a cipher that requires a larger block size than 8 bytes, such as Rijndael.

Details Source

Mitre

Public Date

2006-02-23 00:00:00

Impact

Low

Bugzilla

CVE-2006-0898 perl-Crypt-CBC weaker encryption with some ciphers

Bugzilla ID

430 522

CVSS Status

draft

Red Hat Security Errata

Platform Errata Release Date
Red Hat Satellite 5.0 (RHEL v.4 AS) RHSA-2008:0261 2008-05-20
Red Hat Satellite 5.1 (RHEL v.4 AS) RHSA-2008:0630 2008-08-13
Red Hat Satellite v 4.2 (RHEL v.4 AS) RHSA-2008:0524 2008-06-30
Red Hat Satellite v 4.2 (RHEL v.3 AS) RHSA-2008:0524 2008-06-30